last executing test programs:

1m13.386476868s ago: executing program 0 (id=858):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a000007080002400000000209"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="000327bd7000fedbdf251300000008000100706369303a30303a31302e3000000000080003000000000008000b00d009000006001100070000000800010070636900110002"], 0x7c}, 0x1, 0x0, 0x0, 0x4000000}, 0x48050)
r0 = socket(0x10, 0x2, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB="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"], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)

1m12.917810287s ago: executing program 0 (id=861):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000280)={0x2, 0x0, [{0x491}, {0x9e, 0x0, 0x100000000}]})

1m12.634808042s ago: executing program 0 (id=863):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b5181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000400)='mm_migrate_pages\x00', r1}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

1m12.438023736s ago: executing program 0 (id=865):
prlimit64(0x0, 0xe, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x200000000000000, 0x0)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
creat(&(0x7f0000000200)='./bus\x00', 0x88)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000180)='./bus\x00', 0x0, 0x63d014, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b708000000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = socket(0x840000000002, 0x3, 0xff)
getsockopt$sock_cred(r2, 0x1, 0x11, 0x0, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './bus'}, 0x9)

1m9.943662776s ago: executing program 0 (id=872):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000005c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000900)={0x38, r1, 0x5, 0x0, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r2}, @void}}, [@crypto_settings=[@NL80211_ATTR_AKM_SUITES={0x10, 0x4c, [0xfac13, 0xfac09, 0xfac0e]}], @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}]}, 0x38}, 0x1, 0x0, 0x0, 0x8894}, 0x0)

1m6.940468865s ago: executing program 0 (id=884):
r0 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0)

1m6.512394544s ago: executing program 32 (id=884):
r0 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0)

59.575327501s ago: executing program 2 (id=911):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$radio(&(0x7f0000000080), 0x1, 0x2)
setxattr$incfs_metadata(&(0x7f0000000800)='./file0\x00', &(0x7f0000000840), &(0x7f00000005c0), 0x0, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, 0x0)
socket$inet6(0x10, 0x80000, 0x3)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
sendmsg(r2, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x0, 0x0, 0xb49, 0x9, 0x7ff, 0x0, 0x3}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x410240, 0x54)
r3 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_EXPBUF(r3, 0xc0405610, &(0x7f0000000040)={0x2, 0x0, 0x0, 0x0, <r4=>0xffffffffffffffff})
ioctl$DMA_BUF_IOCTL_SYNC(r4, 0x40086200, &(0x7f0000000480)=0x2)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x200})
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1, 0x2a, &(0x7f00000006c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$kcm(0x2, 0x1000000000000002, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x80, &(0x7f00000002c0)="1a000000", 0x4)
setsockopt(r5, 0x84, 0x81, &(0x7f00000003c0)="1a000000", 0x4)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r5, 0x84, 0x1b, &(0x7f0000000100), &(0x7f00000001c0)=0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000790000000000000000e50000000000000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x94)

56.674440069s ago: executing program 2 (id=921):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000400)='mm_migrate_pages\x00', r1}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

56.451227693s ago: executing program 2 (id=923):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0xfffffffc}, 0x10)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})

54.754861786s ago: executing program 2 (id=926):
r0 = fsmount(0xffffffffffffffff, 0x0, 0xa)
syz_create_resource$binfmt(0x0)
syz_open_procfs$namespace(0x0, 0x0)
r1 = syz_open_dev$loop(&(0x7f00000001c0), 0x2, 0xd00)
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
getpid()
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x91)
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000300)='./file0\x00', 0x0, &(0x7f0000000200)=ANY=[], 0x1, 0x1e9, &(0x7f0000000980)="$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")
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='debugfs\x00', 0x0, 0x0)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f00000000c0)='./file0\x00', 0x860004ce)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000380)={&(0x7f0000000200)="54df5f5193592dc5c410d496e25286035774b9534c13fbd80ce3af339ffa180c05c4e62afb3f6636b25b7fdffc16ed1ad13e562aa07791197bc81e1d15185c1562520233c01c7173c0b0bf75004f5057d62c8778331bdbac24297cbdd8e87e3bc83982138be561cff475e5e856f9864f9edf51a83ef5e9c9874f9f056da8144c401397ca2843221f089f76167c3fe67a4034ff6d2575", &(0x7f0000000040)=""/60, &(0x7f00000002c0)="ffdc1f1e784a838c2c3f", &(0x7f0000000340)="0ecf7166395b0551b665ceae6f98", 0x0, r0}, 0x38)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x6, 0x0)
connect$bt_l2cap(r5, &(0x7f00000003c0)={0x1f, 0x5, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x7116}, 0xe)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

52.014896611s ago: executing program 2 (id=930):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000400)='mm_migrate_pages\x00', r1}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

50.700878357s ago: executing program 2 (id=933):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0xfffffffc}, 0x10)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})

50.479185011s ago: executing program 33 (id=933):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x6)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
r4 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r4, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0xfffffffc}, 0x10)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f00000000c0)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})

37.745130813s ago: executing program 5 (id=991):
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x808c10, &(0x7f0000000100)=ANY=[], 0x83, 0x1cb, &(0x7f0000000280)="$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")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000880)={0x1c, 0x2, 0x3, 0x201, 0x0, 0x0, {0x0, 0x0, 0x1}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x9}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44}, 0x4000000)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x20, 0x2, 0x3, 0x101, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x6, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x40084)
r1 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000000c0)=@generic={&(0x7f0000000080)='./file1\x00'}, 0x18)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x12)
r3 = syz_open_dev$vcsu(&(0x7f0000000580), 0xc, 0x200082)
ioctl$KVM_SET_USER_MEMORY_REGION2(r2, 0x40a0ae49, &(0x7f00000005c0)={0x1ff, 0x0, 0x80a0000, 0x1000, &(0x7f0000ffd000/0x1000)=nil, 0x80000001, r3})
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r1, &(0x7f0000000100)="294cf93585a0a1b9d02b253738583d0251af63823bf12d4fc79e4c9da6fa9195f7eaa7c9c8214af4805a6fbe37fdd49e485b8bd14e6a57e0797fbf4b502a1621b7265c752dfc01b47fe02adb08470d4a4743955209547e8916164cf2eb1ab0d1b0e0e7cec43da5548f9d4ec5a31eb7f4514e5163cabf5ae7bd20fd3413eebf9b7e73dfce0a611fe3faeb386e7be8e3eb5755bc033b9357ecea5872a43db71c4dda95dd2f5b", &(0x7f0000000480)=""/220}, 0x20)

37.310651101s ago: executing program 5 (id=995):
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x10, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x6, 0x7, 0x7f, 0x5, 0x1, 0x6, 0x5f, 0x9, 0x15, 0xffff2d33, 0xff7fff01, 0x7, 0x5, 0x7, 0x5, 0x6, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x5, 0x8, 0x4c74, 0x10000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x0, 0x1, 0x7, 0x5, 0x3e, 0x18e, 0x6, 0x6, 0x80000, 0x6, 0x4, 0x8, 0x3ff, 0x5, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x8, 0x9, 0x8000012f, 0x8008, 0x5, 0xfffffff3, 0x129c32f6, 0x4, 0x5, 0xe, 0x2bf, 0x6c7, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0xfffffffe, 0xe, 0x312, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x7, 0x80007fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x381, 0x4, 0xb, 0x1, 0x9, 0x8, 0x40, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x204, 0x9, 0x3, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0xbc45, 0x48c93790, 0x3f, 0x3], [0x7, 0x408, 0x3ff, 0x5, 0xfffffffd, 0x100, 0x40008, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x9, 0x1, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x81, 0x4, 0x6d01, 0x6, 0x38, 0x200, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x4, 0xa9, 0x5, 0x6, 0xac4, 0xbf, 0xfffffffe, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x5, 0x1c, 0x120000, 0x7ff, 0x2009, 0x80a2ed, 0x2c4ad71a, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x0, 0x938, 0xa, 0x3, 0x0, 0xb9, 0xce4, 0x1ff, 0x2, 0x57, 0x4000005, 0x3, 0x2, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x2000002, 0x151, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x5, 0xc8, 0x1, 0xfffff002, 0x10000, 0x3, 0x7e, 0x3, 0x9622, 0x7, 0xaf, 0x20000008, 0x5, 0x226, 0x2, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf41, 0x7, 0x530e, 0x6c1b, 0x0, 0x4, 0x5, 0x7ff, 0xd7, 0x200, 0xb, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
write(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0xb, &(0x7f00000002c0)={0x32, 0xfffffffc, 0x6})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @broadcast}})
ioctl$sock_inet_SIOCSIFADDR(r1, 0x891c, 0x0)

36.463588008s ago: executing program 5 (id=999):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000140), 0x2401, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000001000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x7, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4000, &(0x7f0000000e40)=ANY=[@ANYBLOB='mode=00000000000000000000177,mode=00000000000000000000005,shortad,utf8,shortad,shortad,session=00000000000016777223,umask=00000000000000000000250,uid=ignore,shortad,dmode=00000000000000000170430,gid=ignore,adinicb,gid=forget,mode=00000000000000000002000,lastblock=00000000000000001024,shortad,euid>', @ANYBLOB=',fsmagic=0x0000000000000002,smackfsf^oor=smackfstrans-ute,fowner>', @ANYRES16=0x0, @ANYRESDEC=0x0, @ANYBLOB="2c736d61636b6673747261736d7574653d001c0b235ffdce27803854a81c498e5bc58fdfc2e25738bee597df2c00"/55], 0xa, 0xc2d, &(0x7f00000001c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x24000010}, 0x800)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
setrlimit(0x1, 0x0)
truncate(&(0x7f0000000080)='./file1\x00', 0x400000f000)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
clock_adjtime(0xffffffd3, &(0x7f0000000000)={0x10000, 0x6, 0x2, 0x0, 0x7, 0xb, 0x651, 0x4, 0x8000009657, 0x3, 0x7fffffff, 0x0, 0x10, 0xb, 0x80000000000000, 0xcc0, 0x1, 0x1, 0x94d8, 0x0, 0x0, 0x809, 0x0, 0xfffffffffffffffa, 0x3, 0x9})
clock_adjtime(0x4, &(0x7f0000000180)={0x7, 0xf, 0xff, 0xcd, 0x8e3, 0x500000000, 0x552e42fc, 0x7, 0x3, 0xfffffffffffffffe, 0x1, 0x7, 0x2, 0x9, 0x6, 0x63, 0xd, 0x2, 0x7f, 0x6, 0xe, 0x9, 0x3df6, 0x800, 0x5, 0x37c})

34.965018738s ago: executing program 5 (id=1002):
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x801, &(0x7f0000000040)=ANY=[], 0x4, 0x17e, &(0x7f0000000500)="$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")
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000002c0)={@mcast2, @rand_addr=' \x01\x00', @mcast1, 0x5, 0x6, 0x0, 0x100, 0x4, 0x12})
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000280), 0x2000001, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x42000, 0x0)
syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000088c0)="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", 0x2000, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0})
getdents64(r2, 0x0, 0x0)

34.35694174s ago: executing program 5 (id=1005):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat(0xffffffffffffff9c, 0x0, 0x2c41, 0x32)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, &(0x7f0000000040)={0x0, @aes256, 0x0, @desc4})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000006c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x6, 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000080)={0x0, 0x2, 0x1, 0x9})
fcntl$lock(r4, 0x24, &(0x7f0000000000)={0x0, 0x2, 0x5, 0x1})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000)
close(r5)

33.723742973s ago: executing program 5 (id=1007):
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x10, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x6, 0x7, 0x7f, 0x5, 0x1, 0x6, 0x5f, 0x9, 0x15, 0xffff2d33, 0xff7fff01, 0x7, 0x5, 0x7, 0x5, 0x6, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x5, 0x8, 0x4c74, 0x10000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x0, 0x1, 0x7, 0x5, 0x3e, 0x18e, 0x6, 0x6, 0x80000, 0x6, 0x4, 0x8, 0x3ff, 0x5, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x8, 0x9, 0x8000012f, 0x8008, 0x5, 0xfffffff3, 0x129c32f6, 0x4, 0x5, 0xe, 0x2bf, 0x6c7, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0xfffffffe, 0xe, 0x312, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x7, 0x80007fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x381, 0x4, 0xb, 0x1, 0x9, 0x8, 0x40, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x204, 0x9, 0x3, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0xbc45, 0x48c93790, 0x3f, 0x3], [0x7, 0x408, 0x3ff, 0x5, 0xfffffffd, 0x100, 0x40008, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x9, 0x1, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x81, 0x4, 0x6d01, 0x6, 0x38, 0x200, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x4, 0xa9, 0x5, 0x6, 0xac4, 0xbf, 0xfffffffe, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x5, 0x1c, 0x120000, 0x7ff, 0x2009, 0x80a2ed, 0x2c4ad71a, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x0, 0x938, 0xa, 0x3, 0x0, 0xb9, 0xce4, 0x1ff, 0x2, 0x57, 0x4000005, 0x3, 0x2, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x2000002, 0x151, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x5, 0xc8, 0x1, 0xfffff002, 0x10000, 0x3, 0x7e, 0x3, 0x9622, 0x7, 0xaf, 0x20000008, 0x5, 0x226, 0x2, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf41, 0x7, 0x530e, 0x6c1b, 0x0, 0x4, 0x5, 0x7ff, 0xd7, 0x200, 0xb, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
write(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0xb, &(0x7f00000002c0)={0x32, 0xfffffffc, 0x6})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @broadcast}})
ioctl$sock_inet_SIOCSIFADDR(r1, 0x891c, 0x0)

33.196152433s ago: executing program 34 (id=1007):
r0 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x10, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x6, 0x7, 0x7f, 0x5, 0x1, 0x6, 0x5f, 0x9, 0x15, 0xffff2d33, 0xff7fff01, 0x7, 0x5, 0x7, 0x5, 0x6, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x5, 0x8, 0x4c74, 0x10000, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x0, 0x1, 0x7, 0x5, 0x3e, 0x18e, 0x6, 0x6, 0x80000, 0x6, 0x4, 0x8, 0x3ff, 0x5, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x8, 0x9, 0x8000012f, 0x8008, 0x5, 0xfffffff3, 0x129c32f6, 0x4, 0x5, 0xe, 0x2bf, 0x6c7, 0x0, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0xfffffffe, 0xe, 0x312, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x7, 0x80007fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x381, 0x4, 0xb, 0x1, 0x9, 0x8, 0x40, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x204, 0x9, 0x3, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0xbc45, 0x48c93790, 0x3f, 0x3], [0x7, 0x408, 0x3ff, 0x5, 0xfffffffd, 0x100, 0x40008, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x9, 0x1, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x81, 0x4, 0x6d01, 0x6, 0x38, 0x200, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x4, 0xa9, 0x5, 0x6, 0xac4, 0xbf, 0xfffffffe, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x5, 0x1c, 0x120000, 0x7ff, 0x2009, 0x80a2ed, 0x2c4ad71a, 0x25], [0x9, 0xbb33, 0x7, 0xb, 0x0, 0x938, 0xa, 0x3, 0x0, 0xb9, 0xce4, 0x1ff, 0x2, 0x57, 0x4000005, 0x3, 0x2, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x2000002, 0x151, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x5, 0xc8, 0x1, 0xfffff002, 0x10000, 0x3, 0x7e, 0x3, 0x9622, 0x7, 0xaf, 0x20000008, 0x5, 0x226, 0x2, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf41, 0x7, 0x530e, 0x6c1b, 0x0, 0x4, 0x5, 0x7ff, 0xd7, 0x200, 0xb, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
write(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
rt_tgsigqueueinfo(0x0, 0x0, 0xb, &(0x7f00000002c0)={0x32, 0xfffffffc, 0x6})
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @broadcast}})
ioctl$sock_inet_SIOCSIFADDR(r1, 0x891c, 0x0)

26.637014183s ago: executing program 4 (id=1029):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000000000001000040000dbe4769ffff06000000"])

26.23478274s ago: executing program 4 (id=1031):
syz_usb_connect(0x2, 0x2f, &(0x7f0000000400)=ANY=[@ANYBLOB="1201000388c5c140d21941825eb00102030109021d00010302a0da0904561001e00103"], &(0x7f0000000ec0)={0x0, 0x0, 0x0, 0x0})

24.588046403s ago: executing program 4 (id=1034):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)={&(0x7f0000000fc0)=ANY=[@ANYBLOB='P\r\x00\x00', @ANYRES16=r1, @ANYBLOB="010029bd7000fcdbdf258100000008000300", @ANYRES32=r2, @ANYBLOB="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"], 0xd50}, 0x1, 0x0, 0x0, 0x844}, 0x24004000)

23.171673262s ago: executing program 4 (id=1037):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x207, &(0x7f0000000000), 0x1, 0x471, &(0x7f0000000580)="$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")
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)='binfmt_misc\x00', 0x8045, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x2200020, 0x0)

22.484846485s ago: executing program 4 (id=1039):
socket$packet(0x11, 0x3, 0x300)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0xa6, &(0x7f00000003c0)=""/166}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x1, 0x8, 0xb}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r2, r1, 0x7}, 0x10)
mprotect(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r2, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r0}, 0x20)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000300)={0x2, 0x4e20, @local}, 0x10)
sendto$inet(r3, &(0x7f00000002c0)="fe", 0x1, 0x20008005, &(0x7f0000000280)={0x2, 0x4e20}, 0x10)
recvfrom$inet(r3, 0x0, 0x45, 0x10023, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000040)="0b118f2b4190be586d04d99304c7975dfca451f6a36e5e11c583738f22bfc241adfd70c9456ea4fe6a5e0716c24ab3", 0xfffffffffffffea5, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1}, 0x1c)

21.609147352s ago: executing program 4 (id=1042):
unshare(0x24020400)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$setpipe(r0, 0x407, 0x20004006)

20.907517696s ago: executing program 35 (id=1042):
unshare(0x24020400)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$setpipe(r0, 0x407, 0x20004006)

7.59805086s ago: executing program 1 (id=1065):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000500)=ANY=[], 0x9, 0x201, &(0x7f0000000f40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x88080, 0x8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffff8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000340)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x10012, r0, 0xc000)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000002c0)={[], [{@euid_lt}]}, 0x1, 0x571, &(0x7f0000001dc0)="$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")

6.213083247s ago: executing program 1 (id=1069):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
close(r0)
getsockopt$CAN_RAW_JOIN_FILTERS(r0, 0x65, 0x2, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd26, 0x25dfdbd6, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x4, 0x4, 0x4, 0xbf25}, 0x48)
close(0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000080)=@framed, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000040)={r2, 0x0, 0x0}, 0x10)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0x3}, 0x6)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x691, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x8c0}, 0x0)

5.853747124s ago: executing program 1 (id=1070):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat(0xffffffffffffff9c, 0x0, 0x2c41, 0x32)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, &(0x7f0000000040)={0x0, @aes256, 0x0, @desc4})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000006c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
fcntl$lock(r4, 0x6, &(0x7f0000000080)={0x0, 0x2, 0x1, 0x9})
fcntl$lock(r4, 0x24, &(0x7f0000000000)={0x0, 0x2, 0x5, 0x1})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r5, 0xc0a85320, &(0x7f0000000340)={{0x80, 0x8}, 'port0\x00', 0x24, 0x1b1878, 0x4, 0x2, 0x3e4, 0x800, 0x4, 0x0, 0x4, 0x3})
close(r5)

4.734201746s ago: executing program 1 (id=1072):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x2, 0x180, 0x4, 0x10, 0xf1, 0x50, 0x12, 0x5, 0x0, 0x29, 0x0, 0x6, 0x0, 0xbdb], 0xffff1001, 0x43100})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x7, 0x1000000000, 0x0, 0x43, 0x2000001, 0x0, 0x2004cb, 0x0, 0xa7c, 0x68ff, 0x5, 0x9, 0x3], 0xeeee8000, 0x202})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000003280)={&(0x7f00000000c0)={0x50, 0x0, 0xfffffffffffffff9, {0x7, 0x2b, 0x9, 0xffffffff84190430, 0x9, 0xc, 0x9, 0xf, 0x0, 0x0, 0x80}}, 0x0, &(0x7f00000008c0)={0x18, 0x0, 0x9, {0x3}}, &(0x7f0000000900)={0x18, 0x11cebede233272f2, 0x8, {0x7fc8}}, &(0x7f0000000940)={0x18, 0x0, 0x7, {0x5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x3000, 0xeeee0000, 0x8, 0x8, 0xb, 0xe6, 0x40, 0x0, 0x0, 0x81, 0x80}, {0x5000, 0x3000, 0x3, 0x0, 0x42, 0x5, 0x7d, 0x6, 0x16, 0x0, 0x2, 0x87}, {0x0, 0xdddd0000, 0xe, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0xa4, 0x5, 0x5}, {0x1, 0xeeee0000, 0x9, 0x6, 0x5, 0x42, 0xb, 0xff, 0x8, 0x7, 0xe}, {0xeeee0000, 0xd000, 0xf, 0x3, 0x15, 0x7, 0xab, 0x8, 0x9, 0x9, 0xf7, 0x97}, {0xeeefa000, 0xdddd0000, 0xe, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x82, 0x2f, 0x1, 0x7}, {0x3000, 0x3000, 0x4, 0x5, 0x7, 0x5, 0x7, 0x3, 0x8, 0x81, 0x40, 0x70}, {0xd000, 0x4000, 0xa, 0x5, 0xcd, 0x7, 0x1, 0x9, 0x2, 0xc, 0xb0, 0x9}, {0xeeef0000, 0x30}, {0x8000000, 0x7}, 0x80000031, 0x0, 0x0, 0x2024, 0x2, 0x0, 0x100000, [0x6800000000000000, 0x4, 0x3, 0x8]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4.220994586s ago: executing program 6 (id=1010):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0}, 0x94)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000b40)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000700)={0x2c, r4, 0x1, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0x4}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000008}, 0x14)

3.345030264s ago: executing program 3 (id=1074):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f000001a640)=@delchain={0xc14, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x1}, {0x0, 0x1}, {0x0, 0xb}}, [@filter_kind_options=@f_matchall={{0xd}, {0xbd8, 0x2, [@TCA_MATCHALL_ACT={0xbd4, 0x2, [@m_sample={0x11c, 0x5, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x5}]}, {0xe5, 0x6, "38f25df555191be2c666d9a5f9fbf1c6674d930a6b49548795f779c04738d31476e7b46904303e774f670daac95204b3aa00967b9ec65d764b2e48bd715da197540ac2dbea2e115f4efd22ebb0c4531bf7fcd31b61547bd15f710737fab7ba50f6730bcf7c68fd6f6734dc220ebc37df3b8e187fddc4516e5f783c302bbc133134d2a06ab408a97de6505724f9be2eb62a565a1535810f54b758c56ab347d36db167b672425230830efb7606f51b3a894056ee7b74af7ad106d611b3d7c4a326bbd604993d9eba87f5d9d7c682cf9643bb5648bc70f946ebac22580878bb773b06"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x7}}}}, @m_ctinfo={0x8c, 0x1b, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x72a0, 0x4, 0xffffffffeffffff1, 0x2, 0x9}}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x7}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x8001}]}, {0x35, 0x6, "89a75f1f9832982c0a59ad5c7b043805d7ff0d0a67a9df5adf2ac6dab7c5cfad8bbf15a9388f68544ed8dea9946ee57f3f"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_gact={0x110, 0x1d, 0x0, 0x0, {{0x9}, {0x88, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x2, 0xc7f, 0x5}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0xa96}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x160e, 0x6}}, @TCA_GACT_PARMS={0x18, 0x2, {0x400, 0x9, 0x5, 0x3, 0x3bc}}, @TCA_GACT_PARMS={0x18, 0x2, {0x4, 0x5, 0x4, 0xe, 0x2800000}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0x92a, 0x10000000}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0xfd0, 0x7}}, @TCA_GACT_PARMS={0x18, 0x2, {0x2, 0x8, 0x4, 0xfff, 0x4}}]}, {0x5d, 0x6, "015c581fa268e87cd777a21a4aca6176b1acd3c4573cb5b8a04e655698f2a2beb41a6dd4120f7117c00a0e5775ad33bb1e629bea904fa46de53a7a59512190f5b8772a6c1599cf0fd101865d09219c94c1fb32f139037d6237"}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_tunnel_key={0x9c, 0x3, 0x0, 0x0, {{0xf}, {0x28, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0xb, 0x81, 0x2, 0xffffffff, 0x3}, 0x1}}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x1}]}, {0x45, 0x6, "7c3b5bfcb83686732928afc192a22d90d27a9989759a481dd012b504df8599e1385efa6ed3eed4aa4eadeabe7be45721cade4f630ee42bca96886403cdc70c3430"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_nat={0x778, 0x9, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x7f, 0x401, 0x3, 0x7, 0x101}, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xe4, 0x7, 0x20000000, 0x0, 0x2}, @dev={0xac, 0x14, 0x14, 0x31}, @private=0xa010101, 0xff000000}}]}, {0x6fd, 0x6, "4e957b2e40365432dec10c9fab1e63487548082ddce56498c7fa08b74b6c47bdb4dfa946e9affb49a7c3646e18b2078c5d54277a1ba1e01ae29255e2a64f4fbbbda4a815c144963b2c0378c5c55b31bfc9c37c8075efe363dcf25fce5cb44fe1ae484a3d28a7ae911d6c97988be9c1588c1e94eccd9d6e81682b392c3a6407d3eeffcd688e443515b0d3f9426339ef89e6fe5bfb510702cde932acdc082611c61bbc40bc1959f3d634a3ebabf018f0f9b3e28b7ab07331746ae5ce8ca923d9928eaa13af3ed77b54fecda714e332f7dae240baf6dcbb6de658ef4bcbdefcb9b9a5904e9ef2af39aa6683964e092db84aabef115d897553babb4af9e56ca195f738e7de6f510e3ee095caf748411449afc6eb293d2972278d365c2344e37f9b6951d3874cbccc04b2b713300cd5cbaa0c33d3325d601607d2bd64dafb0ae1e5acf27681d081ae50c8bc98a1d99b658a90ccdf2e61df6b77fce6998ff1e8a99af7596c488036a9f39e414d831021398e972e23c1135c437c088148c38eb52969ef0319b3282f4ad8ca7d2161bfa0638db69580a2faf861bfce9f256e4260334ba48dc584f4dc8965fd3cbc20808757d3fb8496a198dee33743394387177686a154fc80a997aee0329f6098790818ba6b4b4141002ec8df3cb8fa9fecad93baf5aa5744cf3b0136ebae42cdaadb6b396c77fb788cec7dd3f7c58144a338ce29e4474fc1781b54cabad3baf16ea6c8f7486faee7c95dca03a4230bd2368724d12c28f30b1b11e6b88f612061ebbaa7033289f93baac8b05423163146124f6eaaca666272fa0cc58a82ae5ebe960138b0f93b95aa5065a24caa4bb033d82ec4420ad925480e6e98349e55bdf2383b0f4bf10f40619a24669b42ba994a05ce7d69f64376d869abc3588c24cce5b7db40bdb5c7432b93cec90f65bb5dd303080fef1f4a5b3e95643e8f9cebd217eb339e91f214680946f9e3c0ec42ef9b8b7d35d6388244cfd4c93f8d7454afd0db120038de2d72916c77351c629bcb99c5b36d1f8e594b0eaa8f72fef4ed8cf4e24fe68343dba8b23f20420404d4e1eea9b3027c0087333c35a64670a92b686df09351bf22982ada3b298e853f25b9897e17c9a18ad619c19607344658a2f0b3e719ba1cab0f69ae02f8cd539ee8506b2cc9b660bcd81a48da9c77eafe899ac7941b7d26f5765673d0848118443ef958a403a2cda831227419a273e02d4016a87b1a420ef2d1c44f8538e1bfc1d5b1e0361bbaaab543e3c7ae56f16b4efaceca57db9a27762a17a835cac1cb2a4a88a6e0c2bd266aa83dc5fb157d19d72153feac9f6e9980ec2a8aa075d0b58b82846109d3dc38894c81b18a7ca3d65e2e8f72abacb6c46e67a505e3310dbc95f59d725f913b6a27e24726b99cc10ee7dfbd2d586617fbd624d9ee08a2f031cd9413fa3643823128d1a12da61ca9a8014091026f310ad677851ed4d413897db4e26fef846719f2131f19d472e909c1259fbe329196d234edcb181af05fe671ff5241dd607ad3afc6035338e9032fb902e1b5fb47980323d7b850a735576f6faf80ce3d006345626e4437cf8e254f3cecff2f67fe6cfbeb3d5618ebd1e4a5180339134c2fa0eb6f37e5dce0616bf07121e2369d9bde1fec34af7f8d8f5faa14817f40e01ac585648ed99d12b5fa54447989081fa81872b66100528d2a9d62276488542c2d70e17873a53438f938a96f0b4875bd9d181fce48c9ae1cd5f117e691f87994412916ad07e43f0eb1a7899ae062db554da04ff1316b0ddbf483ab27c944b3c0356756374632626f5247318d1d9fabfe2dd5d4744690dbe7278adc96eaf0dc1c7fa5074358bb54f39e13a1fed263b34b02849ff82086b0854ba8066c5df13883e6feb6618e38d9c2a9635ddb5e8b47242c46fe178b6fb593592c07338ee3d05fae491403aa0bf4864d7bc8199b17edbfd0512367fa991f73f81dab8e62a588ae7fc80e85c15718aff3052afdbaf4ecfa65e9bc977ea093ded92fbf8f59714d6367523edcc44ef8592a0749a99e1b47d5fc97eb7bdbe54c6e963613998273e1ac234be61ae784746c2f9e7d90687a30d046707fd34a38f5b970daf86b44bd29acd957c3d5112b905c72c65c65e05fc2d06fdb518cd71e8d74d87272b3e46808bc170ac6b9996f3009f1729c83481c435f60a401d62370bc02e423fdbc10a101b5d20a0d5ec0c8416664ca603bc4796387c8356976aafdc13724accf37f46fd612dd3defc7db68ac6a220db6ed4b1a1e90eafef98c856826e1649a942a6f71857e67af7826e82c9c5cb002d408731fe54091b91f8c89c9e0c89ad7f97cfc0a077126ea433687136d915c02dfd12e20d7194451fdfb50d971080ed9772950fcd14c753899839ad2d97de208e8c1710f6c95fb6a75169415f52db19a76f8296c58473941fa5abf13b4db93e673ff98b2dae0191f36247100704550d5b681c97bc65f7132dfb6b926195625604b194d7b5bc48af843f88490b920bb1cdbdee52140"}, {0xc, 0x7, {0x1}}, {0xc}}}, @m_mirred={0x104, 0x16, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x80000001, 0xfffffff7, 0x3, 0xe}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x4, 0x1, 0x8}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x0, 0x1, 0x5, 0x3}, 0x3}}]}, {0x75, 0x6, "605524e3626aca9778df374bbcad3d51d25178b24ec88e3a92acc301747daa26bb3deb8b829e8a55fdb30b1765bad6b2ed28273083ed0a35559ef9dfc77b5bd2e05bd2ccccad0ad73d611653ce29c79832ce1a80c857bc92eb376b42ab09b1778f1bd4400cba36f0002420428ecf149c92"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}]}]}}, @TCA_CHAIN={0x8, 0xb, 0x6}]}, 0xc14}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {0x0}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})

2.50886973s ago: executing program 6 (id=1075):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
write$cgroup_int(r2, &(0x7f0000000080)=0xffffffffffffff0f, 0x12)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x7c, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2.408207432s ago: executing program 3 (id=1076):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
close(r0)
getsockopt$CAN_RAW_JOIN_FILTERS(r0, 0x65, 0x2, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd26, 0x25dfdbd6, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x4, 0x4, 0x4, 0xbf25}, 0x48)
close(0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000080)=@framed, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000040)={r2, 0x0, 0x0}, 0x10)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0x3}, 0x6)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x691, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x8c0}, 0x0)

2.197465746s ago: executing program 1 (id=1077):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet6(r0, 0x0, 0x0, 0x4040001)
r1 = dup(r0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000006c0), r1)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, 0x0, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x4, 0x2, 0x0, 0x0, 0x7, 0x8}, {0x12, 0x1, 0x0, 0x1, 0x8001, 0x400}, 0xa5, 0x4, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002340)=@newqdisc={0x38, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r5, {}, {0xfff2, 0xa}, {0x2}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8, 0x2, 0x7}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80c0}, 0x4000)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r7, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), r1)

1.944950091s ago: executing program 3 (id=1078):
r0 = socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP6T_SO_GET_REVISION_TARGET(r4, 0x29, 0x45, &(0x7f0000000480)={'ah\x00'}, &(0x7f00000004c0)=0x1e)
sendmsg$key(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000380)=ANY=[@ANYBLOB="020101090800000000170006ffffff00030006001000000002000000e0000009f9ff0f0005000000030005007217440502000000e0000001"], 0x40}}, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x50}}, 0x0)

483.80682ms ago: executing program 3 (id=1079):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000300)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x0, 0x2}, 0xe)

445.300691ms ago: executing program 6 (id=1080):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
getsockopt$bt_BT_RCVMTU(r0, 0x112, 0xd, 0x0, 0xfffffffffffffffd)

444.488771ms ago: executing program 1 (id=1081):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
setxattr$incfs_metadata(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280), &(0x7f00000002c0)="30573472b621739991c336124406e8a5c812ca847e3bf9b837c91d46ab", 0x1d, 0x1)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f0000000000)=ANY=[], 0x361, 0x0)
setxattr$trusted_overlay_upper(&(0x7f0000000340)='./file1\x00', &(0x7f0000000400), &(0x7f0000001500)={0x0, 0xfb, 0x366, 0x2, 0xf2, "441d9d501bf74942e6058fc21011bf87", "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"}, 0x366, 0x2)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000480)=ANY=[], 0xfe37, 0x0)

185.178766ms ago: executing program 3 (id=1082):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x7c, r2, 0xb7a006d1969b963b, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x60, 0x33, @probe_response={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1}, {}, @broadcast, @device_b, @from_mac=@broadcast, {0xa, 0x382}, @value=@ver_80211n={0x0, 0xff, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1}}, 0x80000000, @default, 0x2100, @val, @val, @void, @val={0x4, 0x6, {0x5, 0x9d, 0xffff, 0x5}}, @val={0x6, 0x2, 0x5}, @val={0x2d, 0x1a, {0x400, 0x0, 0x6, 0x0, {0x7, 0x1cce, 0x0, 0x3, 0x0, 0x1, 0x1, 0x1, 0x1}, 0xf, 0x6, 0x7}}, @val={0x72, 0x6}, @void}}]}, 0x7c}}, 0x14)

184.798916ms ago: executing program 6 (id=1083):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f000001a640)=@delchain={0xc14, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x1}, {0x0, 0x1}, {0x0, 0xb}}, [@filter_kind_options=@f_matchall={{0xd}, {0xbd8, 0x2, [@TCA_MATCHALL_ACT={0xbd4, 0x2, [@m_sample={0x11c, 0x5, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x5}]}, {0xe5, 0x6, "38f25df555191be2c666d9a5f9fbf1c6674d930a6b49548795f779c04738d31476e7b46904303e774f670daac95204b3aa00967b9ec65d764b2e48bd715da197540ac2dbea2e115f4efd22ebb0c4531bf7fcd31b61547bd15f710737fab7ba50f6730bcf7c68fd6f6734dc220ebc37df3b8e187fddc4516e5f783c302bbc133134d2a06ab408a97de6505724f9be2eb62a565a1535810f54b758c56ab347d36db167b672425230830efb7606f51b3a894056ee7b74af7ad106d611b3d7c4a326bbd604993d9eba87f5d9d7c682cf9643bb5648bc70f946ebac22580878bb773b06"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x7}}}}, @m_ctinfo={0x8c, 0x1b, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18, 0x3, {0x72a0, 0x4, 0xffffffffeffffff1, 0x2, 0x9}}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x7}, @TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x8001}]}, {0x35, 0x6, "89a75f1f9832982c0a59ad5c7b043805d7ff0d0a67a9df5adf2ac6dab7c5cfad8bbf15a9388f68544ed8dea9946ee57f3f"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x3}}}}, @m_gact={0x110, 0x1d, 0x0, 0x0, {{0x9}, {0x88, 0x2, 0x0, 0x1, [@TCA_GACT_PROB={0xc, 0x3, {0x2, 0xc7f, 0x5}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0xa96}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x160e, 0x6}}, @TCA_GACT_PARMS={0x18, 0x2, {0x400, 0x9, 0x5, 0x3, 0x3bc}}, @TCA_GACT_PARMS={0x18, 0x2, {0x4, 0x5, 0x4, 0xe, 0x2800000}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0x92a, 0x10000000}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0xfd0, 0x7}}, @TCA_GACT_PARMS={0x18, 0x2, {0x2, 0x8, 0x4, 0xfff, 0x4}}]}, {0x5d, 0x6, "015c581fa268e87cd777a21a4aca6176b1acd3c4573cb5b8a04e655698f2a2beb41a6dd4120f7117c00a0e5775ad33bb1e629bea904fa46de53a7a59512190f5b8772a6c1599cf0fd101865d09219c94c1fb32f139037d6237"}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_tunnel_key={0x9c, 0x3, 0x0, 0x0, {{0xf}, {0x28, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0xb, 0x81, 0x2, 0xffffffff, 0x3}, 0x1}}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x1}]}, {0x45, 0x6, "7c3b5bfcb83686732928afc192a22d90d27a9989759a481dd012b504df8599e1385efa6ed3eed4aa4eadeabe7be45721cade4f630ee42bca96886403cdc70c3430"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_nat={0x778, 0x9, 0x0, 0x0, {{0x8}, {0x54, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{0x7f, 0x401, 0x3, 0x7, 0x101}, @multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, 0xffffffff, 0x1}}, @TCA_NAT_PARMS={0x28, 0x1, {{0xe4, 0x7, 0x20000000, 0x0, 0x2}, @dev={0xac, 0x14, 0x14, 0x31}, @private=0xa010101, 0xff000000}}]}, {0x6fd, 0x6, "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"}, {0xc, 0x7, {0x1}}, {0xc}}}, @m_mirred={0x104, 0x16, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x80000001, 0xfffffff7, 0x3, 0xe}, 0x4}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x4, 0x1, 0x8}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x0, 0x1, 0x5, 0x3}, 0x3}}]}, {0x75, 0x6, "605524e3626aca9778df374bbcad3d51d25178b24ec88e3a92acc301747daa26bb3deb8b829e8a55fdb30b1765bad6b2ed28273083ed0a35559ef9dfc77b5bd2e05bd2ccccad0ad73d611653ce29c79832ce1a80c857bc92eb376b42ab09b1778f1bd4400cba36f0002420428ecf149c92"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}]}]}}, @TCA_CHAIN={0x8, 0xb, 0x6}]}, 0xc14}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {0x0}, {&(0x7f00000007c0)=""/154, 0x9a}, {&(0x7f00000001c0)=""/17, 0x11}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400})

26.17388ms ago: executing program 6 (id=1084):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000100)='./file1\x00', 0x1008008, &(0x7f0000000340)={[{@longad}, {@uid}, {@uid_forget}, {@volume={'volume', 0x3d, 0x3}}, {@fileset}, {@gid}, {@session={'session', 0x3d, 0xffffffffffffff81}}, {@gid_ignore}, {@anchor={'anchor', 0x3d, 0x2}}, {@partition={'partition', 0x3d, 0xfffffffffffffffc}}, {@uid_forget}], [{@fscontext={'fscontext', 0x3d, 'system_u'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'longad'}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@dont_hash}, {@fowner_eq}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x61, 0x30, 0x63, 0x32, 0x36, 0x33], 0x2d, [0x63, 0x39, 0x64, 0x39], 0x2d, [0x64, 0x63, 0x65, 0x31], 0x2d, [0x65, 0x5e, 0x57, 0x30], 0x2d, [0x33, 0x35, 0x66, 0x39, 0x30, 0x5f, 0x61, 0x33]}}}, {@smackfsdef={'smackfsdef', 0x3d, '++'}}, {@fsuuid={'fsuuid', 0x3d, {[0x65, 0x31, 0x32, 0x35, 0x61, 0x34, 0x65, 0x63], 0x2d, [0x64, 0x31, 0x57, 0x30], 0x2d, [0x30, 0x70, 0x36, 0x65], 0x2d, [0x39, 0x34, 0x62, 0x36], 0x2d, [0x66, 0x63, 0x32, 0x37, 0x36, 0x39, 0x31, 0x38]}}}, {@fowner_lt}, {@mask={'mask', 0x3d, '^MAY_EXEC'}}]}, 0x2, 0xc30, &(0x7f0000002740)="$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")

0s ago: executing program 3 (id=1085):
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000200)='./file0\x00', 0x3200014, &(0x7f0000000140)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYRESOCT], 0x1, 0x60b, &(0x7f0000002080)="$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")
r0 = open(&(0x7f00000003c0)='.\x00', 0x100, 0x97)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

kernel console output (not intermixed with test programs):

[  170.456166][  T965] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  170.468035][ T6609] netlink: 12 bytes leftover after parsing attributes in process `syz.1.203'.
[  170.535948][  T965] XFS (loop2): Unmount and run xfs_repair
[  170.554062][  T965] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  170.576477][  T965] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  170.587388][  T965] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  171.026230][ T6615] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  171.099584][  T965] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  171.108534][  T965] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  171.119784][  T965] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  171.128738][  T965] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  171.137870][  T965] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  171.147252][  T965] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  171.158247][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  171.195651][ T2977] XFS (loop2): page discard on page ffffea0001408200, inode 0x29, pos 0.
[  171.232879][ T5850] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  171.259392][ T5850] XFS (loop2): Unmount and run xfs_repair
[  171.269918][ T5850] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  171.292353][ T5850] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  171.317891][ T5850] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  171.329202][ T5850] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  171.338122][ T5850] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  171.350813][ T5850] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  171.366753][ T5850] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  171.384983][ T5850] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  171.403174][ T5850] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  171.423511][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  171.450210][ T2977] XFS (loop2): page discard on page ffffea000142e200, inode 0x26, pos 1024.
[  171.472097][ T5889] loop2: writeback error on inode 38, offset 0, sector 22
[  171.475661][ T5850] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  171.509355][ T5850] XFS (loop2): Unmount and run xfs_repair
[  171.522803][ T5850] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  171.539032][ T5850] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  171.558137][ T5850] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  171.577193][ T5850] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  171.599016][ T5850] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  171.616701][ T5850] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  171.627835][ T5850] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  171.636939][ T5850] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  171.668418][ T5850] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  171.685401][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  171.703428][ T2977] XFS (loop2): page discard on page ffffea0001409000, inode 0x29, pos 32768.
[  171.713004][ T5850] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  171.725499][ T5850] XFS (loop2): Unmount and run xfs_repair
[  171.734131][ T5850] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  171.744921][ T5850] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  172.026178][ T5850] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  172.035217][ T5850] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  172.047057][ T5850] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  172.056090][ T5850] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  172.140635][ T5850] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  172.149680][ T5850] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.167250][ T5850] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.200822][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  172.228664][ T2977] XFS (loop2): page discard on page ffffea0001409f00, inode 0x29, pos 49152.
[  172.250558][ T6629] loop3: detected capacity change from 0 to 128
[  172.259067][ T5889] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  172.277605][ T6629] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  172.331267][ T6629] ext4 filesystem being mounted at /55/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  172.428543][ T5889] XFS (loop2): Unmount and run xfs_repair
[  172.475387][ T5889] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  172.483813][ T5889] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  172.493173][ T5889] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  172.503566][ T5889] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  172.514446][ T5889] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  172.528060][ T5889] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  172.540090][ T5889] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  172.550287][ T5889] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.562652][ T5889] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.572140][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  172.587550][ T2977] XFS (loop2): page discard on page ffffea000142d980, inode 0x29, pos 57344.
[  172.600564][ T5850] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  172.615333][ T5850] XFS (loop2): Unmount and run xfs_repair
[  172.622337][ T5850] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  172.632450][ T5850] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  172.643934][ T5850] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  172.655678][ T5850] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  172.665718][ T5850] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  172.678639][ T5850] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  172.692088][ T5850] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  172.702561][ T5850] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.721931][ T5850] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.731511][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  172.750251][ T2977] XFS (loop2): page discard on page ffffea000142d940, inode 0x29, pos 61440.
[  172.764990][ T5889] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  172.775873][ T5889] XFS (loop2): Unmount and run xfs_repair
[  172.782145][ T5889] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  172.789808][ T5889] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  172.799094][ T5889] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  172.808140][ T5889] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  172.817726][ T5889] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  172.827305][ T5889] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  172.837492][ T5889] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  172.846552][ T5889] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.856644][ T5889] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.866029][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  172.876545][ T2977] XFS (loop2): page discard on page ffffea000142e780, inode 0x26, pos 4096.
[  172.889905][ T5889] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  172.903066][ T5889] XFS (loop2): Unmount and run xfs_repair
[  172.909963][ T5889] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  172.918184][ T5889] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  172.927367][ T5889] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  172.939109][ T5889] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  172.948162][ T5889] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  172.957464][ T5889] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  172.966556][ T5889] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  172.977770][ T5889] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.986863][ T5889] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  172.998100][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  173.009204][ T2977] XFS (loop2): page discard on page ffffea0001409f80, inode 0x26, pos 8192.
[  173.022627][ T5850] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  173.044860][ T5850] XFS (loop2): Unmount and run xfs_repair
[  173.052870][ T5850] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  173.062201][ T5850] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  173.075067][ T5850] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  173.108612][ T5794] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  173.118857][ T5850] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  173.161339][ T5850] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  173.171818][ T5850] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  173.181357][ T5850] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  173.190989][ T5850] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.200130][ T5850] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.215422][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  173.233632][ T2977] XFS (loop2): page discard on page ffffea0001409100, inode 0x26, pos 16384.
[  173.293482][ T5889] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  173.337020][ T5889] XFS (loop2): Unmount and run xfs_repair
[  173.359075][ T5889] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  173.372971][ T5889] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  173.410223][ T5889] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  173.444772][ T5889] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  173.459988][ T5889] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  173.472074][ T5889] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  173.489083][   T27] audit: type=1326 audit(1758849395.650:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6639 comm="syz.0.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64df8eec9 code=0x7ffc0000
[  173.537252][ T5889] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  173.549677][   T27] audit: type=1326 audit(1758849395.650:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6639 comm="syz.0.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64df8eec9 code=0x7ffc0000
[  173.579099][ T5889] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.595767][ T5889] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.615288][ T2977] XFS (loop2): metadata I/O error in "xfs_read_agf+0x27e/0x590" at daddr 0x1 len 1 error 74
[  173.626052][   T27] audit: type=1326 audit(1758849395.660:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6639 comm="syz.0.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fb64df8eec9 code=0x7ffc0000
[  173.659196][ T2977] XFS (loop2): page discard on page ffffea0001409200, inode 0x26, pos 32768.
[  173.678889][ T5850] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  173.681158][   T27] audit: type=1326 audit(1758849395.660:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6639 comm="syz.0.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64df8eec9 code=0x7ffc0000
[  173.727491][   T27] audit: type=1326 audit(1758849395.660:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6639 comm="syz.0.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64df8eec9 code=0x7ffc0000
[  173.747787][ T5850] XFS (loop2): Unmount and run xfs_repair
[  173.769239][ T5850] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  173.793870][ T5850] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  173.829707][ T5850] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  173.854082][ T5850] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  173.902306][ T5850] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  173.929577][ T5850] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  173.938660][ T5850] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  173.951170][ T5850] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.962084][ T5850] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.977652][ T5850] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  173.995182][ T5850] XFS (loop2): Unmount and run xfs_repair
[  174.010234][ T5850] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  174.029065][ T5850] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  174.046122][ T5850] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  174.065479][ T5850] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  174.085357][ T5850] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  174.105932][ T5850] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  174.413653][ T5850] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  174.719882][ T5850] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  174.740126][ T5850] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  174.779706][ T5889] XFS (loop2): Metadata CRC error detected at xfs_agf_read_verify+0x191/0x250, xfs_agf block 0x1 
[  174.819205][ T5889] XFS (loop2): Unmount and run xfs_repair
[  174.862300][ T5889] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  174.897501][ T5889] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  174.913769][ T5889] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  174.939079][ T5889] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  174.964107][ T5889] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  174.979310][ T5889] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  174.988524][ T5889] 00000050: 00 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00  ................
[  174.997725][ T5889] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  175.007293][ T5889] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  175.041691][ T5796] XFS (loop2): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  175.267671][ T6646] loop3: detected capacity change from 0 to 32768
[  175.410036][ T6646] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  175.620285][ T6646] XFS (loop3): Ending clean mount
[  175.870164][ T5794] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  176.299582][ T5850] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  176.478916][ T6671] netlink: 68 bytes leftover after parsing attributes in process `syz.3.218'.
[  176.501180][ T5850] usb 3-1: Using ep0 maxpacket: 16
[  176.511122][ T5850] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  176.539063][ T5850] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  176.559170][ T5850] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  176.578660][ T5850] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.618191][ T5850] usb 3-1: config 0 descriptor??
[  176.739476][ T6673] loop3: detected capacity change from 0 to 128
[  176.808688][ T6673] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  176.848767][ T6673] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  177.574398][ T5850] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0002/input/input6
[  177.646783][ T6669] loop0: detected capacity change from 0 to 32768
[  177.665725][ T6669] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.220 (6669)
[  177.694421][ T5850] microsoft 0003:045E:07DA.0002: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[  177.751087][ T6669] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  177.761966][ T5850] usb 3-1: USB disconnect, device number 2
[  177.818256][ T6669] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  177.847740][ T6669] BTRFS info (device loop0): enabling ssd optimizations
[  177.876381][ T6669] BTRFS info (device loop0): using free space tree
[  177.901749][ T6677] fido_id[6677]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/3-1/report_descriptor': No such file or directory
[  178.031024][ T6669] BTRFS info (device loop0): auto enabling async discard
[  180.398252][ T5798] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  180.631710][ T6706] loop2: detected capacity change from 0 to 1024
[  183.091118][ T6724] loop1: detected capacity change from 0 to 1024
[  183.273996][ T6724] hfsplus: request for non-existent node 16777216 in B*Tree
[  183.279023][   T27] audit: type=1800 audit(1758849405.450:14): pid=6724 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.231" name="file2" dev="loop1" ino=20 res=0 errno=0
[  183.307153][ T6724] hfsplus: request for non-existent node 16777216 in B*Tree
[  185.495405][ T6768] loop0: detected capacity change from 0 to 2048
[  186.281341][ T6768] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  188.554430][ T6789] netlink: 68 bytes leftover after parsing attributes in process `syz.2.249'.
[  190.873323][ T6815] netlink: 68 bytes leftover after parsing attributes in process `syz.0.259'.
[  194.378364][ T6827] netlink: 68 bytes leftover after parsing attributes in process `syz.0.262'.
[  194.654137][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  194.660919][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  194.937235][ T6840] netlink: 68 bytes leftover after parsing attributes in process `syz.3.268'.
[  195.022488][ T6843] loop2: detected capacity change from 0 to 1024
[  195.119287][  T785] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  195.193356][   T27] audit: type=1800 audit(1758849417.370:15): pid=6843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.269" name="file1" dev="loop2" ino=20 res=0 errno=0
[  195.194575][ T6843] (null): rxe_set_mtu: Set mtu to 256
[  195.221244][ T6847] loop3: detected capacity change from 0 to 4096
[  195.250564][ T6847] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  195.254563][ T6843] rdma_rxe: rxe_newlink: failed to add lo
[  195.312440][ T6847] ntfs3: loop3: volume is dirty and "force" flag is not set!
[  195.343226][  T785] usb 2-1: config 0 has an invalid interface number: 102 but max is 0
[  195.351757][  T785] usb 2-1: config 0 has no interface number 0
[  195.383787][  T785] usb 2-1: New USB device found, idVendor=2001, idProduct=1a00, bcdDevice=38.f5
[  195.574773][  T785] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.608601][  T785] usb 2-1: config 0 descriptor??
[  195.763007][ T6852] loop3: detected capacity change from 0 to 128
[  195.773523][ T6852] EXT4-fs: Ignoring removed nomblk_io_submit option
[  195.780427][ T6852] ext3: Unknown parameter 'smackfsdef'
[  196.444467][  T785] asix 2-1:0.102 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  196.477833][  T785] asix: probe of 2-1:0.102 failed with error -71
[  196.508539][  T785] usb 2-1: USB disconnect, device number 3
[  197.804345][ T6879] netlink: 68 bytes leftover after parsing attributes in process `syz.1.279'.
[  201.506566][ T6896] loop2: detected capacity change from 0 to 1024
[  201.831391][ T6906] netlink: 12 bytes leftover after parsing attributes in process `syz.0.290'.
[  201.846554][ T6906] netlink: 12 bytes leftover after parsing attributes in process `syz.0.290'.
[  201.863176][ T6906] 8021q: VLANs not supported on gre0
[  201.931950][   T27] audit: type=1800 audit(1758849424.159:16): pid=6896 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.286" name="file1" dev="loop2" ino=20 res=0 errno=0
[  201.933385][ T6896] (null): rxe_set_mtu: Set mtu to 256
[  201.989724][ T6896] rdma_rxe: rxe_newlink: failed to add lo
[  202.388358][ T6911] netlink: 68 bytes leftover after parsing attributes in process `syz.0.292'.
[  203.518435][ T6923] loop0: detected capacity change from 0 to 128
[  203.559173][ T6923] EXT4-fs (loop0): Test dummy encryption mode enabled
[  203.609271][ T6923] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  203.645434][ T6925] xt_TPROXY: Can be used only with -p tcp or -p udp
[  203.652824][ T6923] ext4 filesystem being mounted at /71/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  206.997677][ T5808] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  207.004618][ T5804] Bluetooth: hci4: command 0x1003 tx timeout
[  207.201756][ T5798] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  207.619728][ T6939] loop0: detected capacity change from 0 to 4096
[  207.725338][ T6944] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  209.179112][  T785] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  210.183524][ T6964] loop0: detected capacity change from 0 to 128
[  210.242942][ T6964] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  210.308475][ T6964] ext4 filesystem being mounted at /74/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  210.309820][  T785] usb 4-1: Using ep0 maxpacket: 16
[  210.349922][  T785] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  210.361057][  T785] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has invalid wMaxPacketSize 0
[  210.379057][  T785] usb 4-1: config 0 interface 0 has no altsetting 0
[  210.385824][  T785] usb 4-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00
[  210.401452][  T785] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.450876][  T785] usb 4-1: config 0 descriptor??
[  210.783304][ T6973] process 'syz.0.309' launched './file1' with NULL argv: empty string added
[  211.272032][  T785] nzxt-smart2 0003:1E71:2009.0003: unknown main item tag 0x0
[  211.280197][  T785] nzxt-smart2 0003:1E71:2009.0003: item fetching failed at offset 2/5
[  211.290119][  T785] nzxt-smart2: probe of 0003:1E71:2009.0003 failed with error -22
[  211.303900][  T785] usb 4-1: USB disconnect, device number 3
[  211.428698][ T5798] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  214.044594][ T5806] Bluetooth: hci2: command 0x0406 tx timeout
[  214.044644][ T5801] Bluetooth: hci1: command 0x0406 tx timeout
[  214.050760][ T5806] Bluetooth: hci0: command 0x0406 tx timeout
[  214.050799][ T5806] Bluetooth: hci3: command 0x0406 tx timeout
[  219.267231][ T7015] loop1: detected capacity change from 0 to 4096
[  219.573403][ T7023] Error parsing options; rc = [-22]
[  219.606686][ T7023] loop2: detected capacity change from 0 to 64
[  219.919100][ T7023] hfs: get root inode failed
[  220.664442][ T5795] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  221.498758][ T7029] loop0: detected capacity change from 0 to 1024
[  221.706019][   T27] audit: type=1800 audit(1758849443.929:17): pid=7029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.328" name="file1" dev="loop0" ino=20 res=0 errno=0
[  221.727561][ T7029] (null): rxe_set_mtu: Set mtu to 4096
[  221.740958][ T7031] syz_tun: entered allmulticast mode
[  221.752251][ T7029] rdma_rxe: rxe_newlink: failed to add lo
[  221.773608][ T7031] pimreg: entered allmulticast mode
[  222.044669][ T7030] syz_tun: left allmulticast mode
[  222.775770][ T7053] netlink: 'syz.2.336': attribute type 4 has an invalid length.
[  223.930313][ T7065] loop1: detected capacity change from 0 to 1024
[  224.163869][   T27] audit: type=1800 audit(1758849446.389:18): pid=7065 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.340" name="file1" dev="loop1" ino=20 res=0 errno=0
[  224.165119][ T7065] syz2: rxe_newlink: already configured on lo
[  227.254125][ T7102] loop2: detected capacity change from 0 to 4096
[  227.340397][ T7102] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  227.398567][ T7102] ntfs3: loop2: volume is dirty and "force" flag is not set!
[  228.215539][ T7116] af_packet: tpacket_rcv: packet too big, clamped from 240 to 4294967272. macoff=96
[  230.564883][ T7141] tipc: Started in network mode
[  230.618085][ T7141] tipc: Node identity 2affca568ccd, cluster identity 4711
[  230.632203][ T7141] tipc: Enabled bearer <eth:netdevsim0>, priority 10
[  230.646168][ T7144] tipc: Cannot configure node identity twice
[  230.660790][ T7144] tipc: Cannot configure node identity twice
[  230.849849][ T7143] netlink: 'syz.0.362': attribute type 4 has an invalid length.
[  231.816520][ T5884] tipc: Node number set to 2788346454
[  232.840999][ T7163] netlink: 4 bytes leftover after parsing attributes in process `syz.1.370'.
[  235.096296][ T7182] netlink: 'syz.3.373': attribute type 4 has an invalid length.
[  235.334631][ T7185] hsr0: entered promiscuous mode
[  235.341303][ T7185] hsr0: left promiscuous mode
[  235.773618][ T5799] Bluetooth: hci3: command 0x0406 tx timeout
[  236.027822][   T27] audit: type=1326 audit(1758849458.249:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7180 comm="syz.0.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64df8eec9 code=0x7fc00000
[  236.049946][    C1] vkms_vblank_simulate: vblank timer overrun
[  238.249815][ T7205] lo speed is unknown, defaulting to 1000
[  239.548256][ T7202] workqueue: Failed to create a rescuer kthread for wq "xfs-buf/nullb0": -EINTR
[  244.032639][ T7254] loop0: detected capacity change from 0 to 4096
[  244.120574][ T7254] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  244.203166][ T7254] ntfs3: loop0: volume is dirty and "force" flag is not set!
[  247.505354][ T7322] netlink: 16 bytes leftover after parsing attributes in process `syz.0.422'.
[  248.460653][ T7355] netlink: 16 bytes leftover after parsing attributes in process `syz.0.434'.
[  249.852886][ T7384] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  250.052095][ T7384] syzkaller0: entered promiscuous mode
[  250.060683][ T7384] syzkaller0: entered allmulticast mode
[  250.067787][ T7384] tipc: Resetting bearer <eth:syzkaller0>
[  250.284208][ T7381] tipc: Resetting bearer <eth:syzkaller0>
[  252.540009][ T7381] tipc: Disabling bearer <eth:syzkaller0>
[  256.020611][ T7435] netlink: 'syz.0.466': attribute type 12 has an invalid length.
[  256.076904][ T7435] netlink: 'syz.0.466': attribute type 29 has an invalid length.
[  256.092883][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  256.099570][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  256.117684][ T7435] netlink: 148 bytes leftover after parsing attributes in process `syz.0.466'.
[  256.149118][ T7435] netlink: 'syz.0.466': attribute type 2 has an invalid length.
[  256.179032][ T7435] netlink: 'syz.0.466': attribute type 3 has an invalid length.
[  256.207278][ T7435] netlink: 11 bytes leftover after parsing attributes in process `syz.0.466'.
[  256.787880][ T7451] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  256.798227][ T7451] syzkaller0: entered promiscuous mode
[  256.807036][ T7451] syzkaller0: entered allmulticast mode
[  256.826315][ T7451] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  256.863614][ T7451] tipc: Resetting bearer <eth:syzkaller0>
[  256.870547][ T7453] netlink: 4 bytes leftover after parsing attributes in process `syz.3.474'.
[  256.928711][ T7450] tipc: Resetting bearer <eth:syzkaller0>
[  256.955694][ T7450] tipc: Disabling bearer <eth:syzkaller0>
[  257.726149][ T7474] loop2: detected capacity change from 0 to 4096
[  257.758436][ T7474] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  257.834086][ T7474] ntfs3: loop2: volume is dirty and "force" flag is not set!
[  259.935795][ T7505] loop3: detected capacity change from 0 to 4096
[  259.959740][ T7505] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  260.045277][ T7505] ntfs3: loop3: volume is dirty and "force" flag is not set!
[  260.445862][ T7521] loop3: detected capacity change from 0 to 128
[  260.457795][ T7521] EXT4-fs: Ignoring removed nomblk_io_submit option
[  260.464746][ T7521] ext3: Unknown parameter 'smackfsdef'
[  261.057782][ T7526] infiniband syz2: set active
[  261.071772][ T7526] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  261.112153][   T23] lo speed is unknown, defaulting to 1000
[  261.207307][ T7534] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  261.462619][ T7541] netlink: 68 bytes leftover after parsing attributes in process `syz.0.507'.
[  261.575784][ T7543] netlink: 16 bytes leftover after parsing attributes in process `syz.0.508'.
[  261.586875][ T7543] netlink: 44 bytes leftover after parsing attributes in process `syz.0.508'.
[  262.458739][ T7548] netlink: 'syz.1.510': attribute type 12 has an invalid length.
[  262.488286][ T7548] netlink: 'syz.1.510': attribute type 29 has an invalid length.
[  262.518788][ T7548] netlink: 148 bytes leftover after parsing attributes in process `syz.1.510'.
[  262.552774][ T7548] netlink: 59 bytes leftover after parsing attributes in process `syz.1.510'.
[  264.872271][ T7552] loop0: detected capacity change from 0 to 4096
[  264.934544][ T7552] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  265.028574][ T7552] ntfs3: loop0: volume is dirty and "force" flag is not set!
[  265.376245][ T7561] loop0: detected capacity change from 0 to 128
[  265.389489][ T7561] EXT4-fs: Ignoring removed nomblk_io_submit option
[  265.396283][ T7561] ext3: Unknown parameter 'smackfsdef'
[  268.253837][ T7596] netlink: 28 bytes leftover after parsing attributes in process `syz.2.528'.
[  268.461180][ T7600] (null): rxe_set_mtu: Set mtu to 1024
[  268.537999][ T7592] syz.0.526 (7592) used greatest stack depth: 17960 bytes left
[  269.729953][ T7600] infiniband syz1: set active
[  269.737408][ T7600] infiniband syz1: added bond0
[  269.755702][ T7600] syz1: rxe_create_cq: returned err = -12
[  269.779039][ T7600] infiniband syz1: Couldn't create ib_mad CQ
[  269.785273][ T7600] infiniband syz1: Couldn't open port 1
[  269.805516][ T7614] syzkaller1: entered promiscuous mode
[  269.829503][ T7614] syzkaller1: entered allmulticast mode
[  269.898083][ T7600] RDS/IB: syz1: added
[  269.919295][ T7600] smc: adding ib device syz1 with port count 1
[  269.925550][ T7600] smc:    ib device syz1 port 1 has pnetid 
[  270.703231][ T7621] loop1: detected capacity change from 0 to 4096
[  270.795682][ T7621] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  270.857382][ T7621] ntfs3: loop1: volume is dirty and "force" flag is not set!
[  273.487460][ T7665] netlink: 12 bytes leftover after parsing attributes in process `syz.0.553'.
[  273.623794][ T7665] vlan2: entered allmulticast mode
[  273.644846][ T7665] bridge0: entered allmulticast mode
[  273.663069][ T7665] bridge1: port 1(vlan2) entered blocking state
[  273.679349][ T7665] bridge1: port 1(vlan2) entered disabled state
[  273.692710][ T7665] vlan2: entered promiscuous mode
[  273.698089][ T7665] bridge0: entered promiscuous mode
[  275.540017][ T7703] loop3: detected capacity change from 0 to 128
[  275.605461][ T7703] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  275.654709][ T7703] ext4 filesystem being mounted at /144/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  276.308518][ T7711] infiniband syz2: set active
[  276.374363][ T7711] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  276.396481][ T5884] lo speed is unknown, defaulting to 1000
[  276.644144][ T7722] 8021q: adding VLAN 0 to HW filter on device bond1
[  276.825985][ T7728] loop1: detected capacity change from 0 to 4096
[  276.868488][ T7728] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  276.898791][ T7728] ntfs3: loop1: volume is dirty and "force" flag is not set!
[  277.303884][ T7739] loop1: detected capacity change from 0 to 128
[  277.315198][ T7739] EXT4-fs: Ignoring removed nomblk_io_submit option
[  277.322151][ T7739] ext3: Unknown parameter 'smackfsdef'
[  278.053871][ T5794] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  279.849760][ T7789] bridge_slave_0: invalid flags given to default FDB implementation
[  279.881162][ T7789] netlink: 4 bytes leftover after parsing attributes in process `syz.1.596'.
[  279.903793][ T7789] bridge_slave_1: left allmulticast mode
[  279.918390][ T7789] bridge_slave_1: left promiscuous mode
[  279.939497][ T7789] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.977287][ T7789] bridge_slave_0: left allmulticast mode
[  279.985863][ T7789] bridge_slave_0: left promiscuous mode
[  279.994806][ T7789] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.653119][ T7793] netlink: 'syz.3.597': attribute type 10 has an invalid length.
[  280.834476][ T7793] 8021q: adding VLAN 0 to HW filter on device batadv0
[  281.205619][ T7805] loop1: detected capacity change from 0 to 4096
[  281.259068][ T7807] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  283.170053][ T7835] loop2: detected capacity change from 0 to 4096
[  283.315031][ T7842] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  284.720978][ T7868] (null): rxe_set_mtu: Set mtu to 1024
[  284.728862][ T7868] rdma_rxe: rxe_newlink: failed to add bond0
[  284.754881][ T7868] netlink: 'syz.0.626': attribute type 13 has an invalid length.
[  284.929747][ T7868] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  285.824111][ T7887] loop0: detected capacity change from 0 to 4096
[  286.063578][ T7896] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  288.898920][    C1] sched: RT throttling activated
[  289.076024][ T7934] netlink: 'syz.2.649': attribute type 12 has an invalid length.
[  289.097530][ T7934] netlink: 'syz.2.649': attribute type 29 has an invalid length.
[  289.100131][ T7930] loop3: detected capacity change from 0 to 4096
[  289.116609][ T7934] netlink: 148 bytes leftover after parsing attributes in process `syz.2.649'.
[  289.144935][ T7934] netlink: 'syz.2.649': attribute type 2 has an invalid length.
[  289.158045][ T7934] netlink: 23 bytes leftover after parsing attributes in process `syz.2.649'.
[  289.178698][ T7940] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  290.898552][ T7968] netlink: 'syz.2.662': attribute type 12 has an invalid length.
[  290.906719][ T7968] netlink: 'syz.2.662': attribute type 29 has an invalid length.
[  290.914845][ T7968] netlink: 148 bytes leftover after parsing attributes in process `syz.2.662'.
[  290.924279][ T7968] netlink: 'syz.2.662': attribute type 2 has an invalid length.
[  290.932482][ T7968] netlink: 23 bytes leftover after parsing attributes in process `syz.2.662'.
[  291.844201][ T7975] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  291.869096][ T7975] batman_adv: batadv0: Removing interface: batadv_slave_0
[  291.886511][ T7975] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  291.909122][ T7975] batman_adv: batadv0: Removing interface: batadv_slave_1
[  292.096620][ T7983] loop1: detected capacity change from 0 to 4096
[  292.156768][ T7988] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  293.115888][ T7995] netlink: 'syz.0.674': attribute type 12 has an invalid length.
[  293.123867][ T7995] netlink: 'syz.0.674': attribute type 29 has an invalid length.
[  293.133434][ T7995] netlink: 148 bytes leftover after parsing attributes in process `syz.0.674'.
[  293.143805][ T7995] netlink: 'syz.0.674': attribute type 2 has an invalid length.
[  293.152042][ T7995] netlink: 23 bytes leftover after parsing attributes in process `syz.0.674'.
[  295.098673][ T8025] netlink: 'syz.2.684': attribute type 12 has an invalid length.
[  295.107113][ T8025] netlink: 'syz.2.684': attribute type 29 has an invalid length.
[  295.115342][ T8025] netlink: 148 bytes leftover after parsing attributes in process `syz.2.684'.
[  295.124706][ T8025] netlink: 'syz.2.684': attribute type 2 has an invalid length.
[  295.133726][ T8025] netlink: 'syz.2.684': attribute type 3 has an invalid length.
[  295.141735][ T8025] netlink: 11 bytes leftover after parsing attributes in process `syz.2.684'.
[  295.259060][  T785] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[  295.367883][ T8030] loop2: detected capacity change from 0 to 4096
[  295.416267][ T8031] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  295.461575][  T785] usb 4-1: config 0 has an invalid interface number: 214 but max is 0
[  295.474427][  T785] usb 4-1: config 0 has no interface number 0
[  295.494462][  T785] usb 4-1: config 0 interface 214 altsetting 2 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  295.529555][  T785] usb 4-1: config 0 interface 214 has no altsetting 0
[  295.548573][  T785] usb 4-1: New USB device found, idVendor=07c9, idProduct=000e, bcdDevice=5d.4f
[  295.566793][  T785] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  295.584643][  T785] usb 4-1: Product: syz
[  295.594396][  T785] usb 4-1: Manufacturer: syz
[  295.612408][  T785] usb 4-1: SerialNumber: syz
[  295.620085][  T785] usb 4-1: config 0 descriptor??
[  295.634378][ T8022] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  295.858046][ T5835] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  295.865540][ T8022] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  296.060864][ T5835] usb 3-1: Using ep0 maxpacket: 32
[  296.073657][ T5835] usb 3-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  296.082971][ T5835] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.091143][ T5835] usb 3-1: Product: syz
[  296.095348][ T5835] usb 3-1: Manufacturer: syz
[  296.100060][ T5835] usb 3-1: SerialNumber: syz
[  296.108287][ T5835] usb 3-1: config 0 descriptor??
[  296.118028][ T5835] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  296.279087][   T23] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  296.469110][   T23] usb 2-1: Using ep0 maxpacket: 32
[  296.476216][   T23] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[  296.488858][   T23] usb 2-1: New USB device found, idVendor=3344, idProduct=22f0, bcdDevice=ef.4d
[  296.498238][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  296.506509][   T23] usb 2-1: Product: syz
[  296.510828][   T23] usb 2-1: Manufacturer: syz
[  296.515588][   T23] usb 2-1: SerialNumber: syz
[  296.733826][   T23] usb 2-1: selecting invalid altsetting 1
[  296.938147][   T23] LME2510(C): Firmware Status: 06 03 44 9c 42 d3
[  296.938227][   T23] usb 2-1: dvb_usb_v2: found a 'DM04_LME2510C_DVB-S RS2000' in cold state
[  296.956809][   T23] usb 2-1: Direct firmware load for dvb-usb-lme2510c-rs2000.fw failed with error -2
[  296.966629][   T23] usb 2-1: Falling back to sysfs fallback for: dvb-usb-lme2510c-rs2000.fw
[  297.010172][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -32
[  297.023859][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x0006: -32
[  297.035289][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): invalid MAC address, using random
[  297.140972][ T8035] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  297.150797][ T8035] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  298.548402][ T5835] gspca_stk1135: reg_w 0x203 err -110
[  298.864630][ T5835] gspca_stk1135: serial bus timeout: status=0x00
[  298.920372][ T5835] gspca_stk1135: Sensor write failed
[  299.079775][ T5835] gspca_stk1135: serial bus timeout: status=0x00
[  299.107064][ T5835] gspca_stk1135: Sensor write failed
[  299.119390][ T5835] gspca_stk1135: serial bus timeout: status=0x00
[  299.138363][ T5835] gspca_stk1135: Sensor read failed
[  299.152948][ T5835] gspca_stk1135: serial bus timeout: status=0x00
[  299.173859][ T5835] gspca_stk1135: Sensor read failed
[  299.191550][ T5835] gspca_stk1135: Detected sensor type unknown (0x0)
[  299.204061][ T5835] gspca_stk1135: serial bus timeout: status=0x00
[  299.221496][ T5835] gspca_stk1135: Sensor read failed
[  299.226992][ T5835] gspca_stk1135: serial bus timeout: status=0x00
[  299.254095][ T5835] gspca_stk1135: Sensor read failed
[  299.278528][ T5835] gspca_stk1135: serial bus timeout: status=0x00
[  299.306142][ T5835] gspca_stk1135: Sensor write failed
[  299.321286][ T5835] gspca_stk1135: serial bus timeout: status=0x00
[  299.336066][ T5835] gspca_stk1135: Sensor write failed
[  299.347972][ T5835] stk1135: probe of 3-1:0.0 failed with error -110
[  299.457299][ T8054] netlink: 'syz.0.693': attribute type 12 has an invalid length.
[  299.466283][ T8054] netlink: 'syz.0.693': attribute type 29 has an invalid length.
[  299.474391][ T8054] netlink: 148 bytes leftover after parsing attributes in process `syz.0.693'.
[  299.486480][ T8054] netlink: 'syz.0.693': attribute type 2 has an invalid length.
[  299.494410][ T8054] netlink: 23 bytes leftover after parsing attributes in process `syz.0.693'.
[  299.559712][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -32
[  299.580561][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -32
[  299.666308][ T5884] usb 3-1: USB disconnect, device number 3
[  299.751064][ T8059] loop0: detected capacity change from 0 to 4096
[  299.802927][ T8064] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  299.829720][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71
[  299.899462][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x0040: -71
[  299.929976][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x0001: -71
[  299.968459][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x001f: -71
[  299.999643][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x001e: -71
[  300.019575][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x001a: -71
[  300.049539][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x001c: -71
[  300.116302][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x001a: -71
[  300.184233][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x001c: -71
[  300.284685][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x001f: -71
[  300.418461][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x0001: -71
[  300.641961][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x001f: -71
[  300.872247][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x0019: -71
[  300.947384][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x001f: -71
[  301.012604][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71
[  301.072077][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x000e: -71
[  301.109584][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71
[  301.144774][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x000e: -71
[  301.191061][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71
[  301.250008][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x000e: -71
[  301.295791][ T8086] netlink: 'syz.0.703': attribute type 12 has an invalid length.
[  301.317299][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x000d: -71
[  301.321884][ T8086] netlink: 'syz.0.703': attribute type 29 has an invalid length.
[  301.336296][ T8086] netlink: 148 bytes leftover after parsing attributes in process `syz.0.703'.
[  301.345373][ T8086] netlink: 'syz.0.703': attribute type 2 has an invalid length.
[  301.357707][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to write reg index 0x000e: -71
[  301.359086][ T8086] netlink: 23 bytes leftover after parsing attributes in process `syz.0.703'.
[  302.219190][  T785] ax88179_178a 4-1:0.214 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  302.305148][  T785] ax88179_178a 4-1:0.214 eth1: register 'ax88179_178a' at usb-dummy_hcd.3-1, AT-UMC2000 USB 3.0/USB 3.1 Gen 1 to Gigabit Ethernet Adapter, ba:6d:68:2d:8e:89
[  302.325669][ T8092] loop0: detected capacity change from 0 to 512
[  302.335522][  T785] usb 4-1: USB disconnect, device number 4
[  302.343055][  T785] ax88179_178a 4-1:0.214 eth1: unregister 'ax88179_178a' usb-dummy_hcd.3-1, AT-UMC2000 USB 3.0/USB 3.1 Gen 1 to Gigabit Ethernet Adapter
[  302.372215][ T8094] loop3: detected capacity change from 0 to 128
[  302.393517][ T8094] UDF-fs: bad mount option "uid=" or missing value
[  302.435328][ T8092] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  302.462778][ T8066] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  302.465001][ T8092] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  302.544092][ T8099] loop2: detected capacity change from 0 to 4096
[  302.593630][ T8100] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  302.876802][ T5798] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  303.220526][ T8113] loop3: detected capacity change from 0 to 2048
[  303.288538][ T8113] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  304.580132][ T8131] loop2: detected capacity change from 0 to 1024
[  304.588150][ T8131] EXT4-fs: Ignoring removed orlov option
[  304.645520][ T8131] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.698442][   T27] audit: type=1800 audit(1758849526.919:20): pid=8131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.720" name="file1" dev="loop2" ino=15 res=0 errno=0
[  304.726442][ T8138] loop3: detected capacity change from 0 to 512
[  304.836659][   T27] audit: type=1804 audit(1758849527.059:21): pid=8139 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.720" name="/newroot/164/file1/file1" dev="loop2" ino=15 res=1 errno=0
[  304.860336][   T27] audit: type=1800 audit(1758849527.059:22): pid=8139 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.720" name="file1" dev="loop2" ino=15 res=0 errno=0
[  304.893416][ T8138] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  304.948098][ T8138] EXT4-fs (loop3): orphan cleanup on readonly fs
[  304.974936][ T8138] Quota error (device loop3): v2_read_file_info: Free block number 1 out of range (1, 6).
[  305.020572][ T8138] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  305.065678][ T8138] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  305.087419][ T8138] EXT4-fs (loop3): 1 truncate cleaned up
[  305.991419][ T8138] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  306.027512][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.177959][ T8138] Quota error (device loop3): v2_read_file_info: Free block number 1 out of range (1, 6).
[  306.228428][ T8138] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  306.656713][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  307.754832][ T8168] loop0: detected capacity change from 0 to 256
[  307.798624][ T8168] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  307.807729][ T8170] loop2: detected capacity change from 0 to 2048
[  307.850919][ T8168] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[  307.871168][ T8170]  loop2: p1 < > p4
[  307.912053][ T8170] loop2: p4 size 8388608 extends beyond EOD, truncated
[  307.934483][ T8168] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  308.208545][ T8174] loop3: detected capacity change from 0 to 512
[  308.307292][ T8174] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  308.413009][ T8174] ext4 filesystem being mounted at /181/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  308.475645][ T5957] udevd[5957]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  308.503243][ T5928] udevd[5928]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  308.518811][ T8174] EXT4-fs (loop3): shut down requested (1)
[  308.621986][ T8066] udevd[8066]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  308.642752][ T5957] udevd[5957]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  308.669228][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.732496][ T8187] loop1: detected capacity change from 0 to 512
[  308.806281][ T8187] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  308.841574][ T8187] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  308.936410][ T8187] EXT4-fs (loop1): 1 truncate cleaned up
[  308.958137][ T8187] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  309.057742][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.893689][ T8200] loop0: detected capacity change from 0 to 764
[  309.912287][ T8204] loop2: detected capacity change from 0 to 128
[  310.000791][ T8204] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  310.076873][ T8204] ext4 filesystem being mounted at /170/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  311.414478][ T5796] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  313.824188][ T8256] loop2: detected capacity change from 0 to 256
[  313.858683][ T8256] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  313.943588][ T8256] syz.2.760: attempt to access beyond end of device
[  313.943588][ T8256] loop2: rw=524288, sector=34359738488, nr_sectors = 8 limit=256
[  313.973714][ T8256] syz.2.760: attempt to access beyond end of device
[  313.973714][ T8256] loop2: rw=0, sector=34359738488, nr_sectors = 8 limit=256
[  314.011584][   T27] audit: type=1800 audit(1758849536.239:23): pid=8256 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.760" name="file1" dev="loop2" ino=1048597 res=0 errno=0
[  314.117645][ T8262] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=2618529509 (2618529509 ns) > initial count (196906625 ns). Using initial count to start timer.
[  314.459160][  T785] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  314.656174][  T785] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  314.679785][  T785] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.701784][  T785] usb 4-1: config 0 descriptor??
[  314.802504][ T8274] loop0: detected capacity change from 0 to 4096
[  314.822750][ T8274] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  314.864766][ T8274] ntfs3: loop0: volume is dirty and "force" flag is not set!
[  314.958421][ T8262] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  315.143831][  T785] usb 4-1: Cannot read MAC address
[  315.150977][  T785] MOSCHIP usb-ethernet driver: probe of 4-1:0.0 failed with error -71
[  315.193785][  T785] usb 4-1: USB disconnect, device number 5
[  315.417460][ T8280] netlink: 'syz.2.767': attribute type 12 has an invalid length.
[  315.425427][ T8280] netlink: 'syz.2.767': attribute type 29 has an invalid length.
[  315.440424][ T8280] netlink: 148 bytes leftover after parsing attributes in process `syz.2.767'.
[  315.450737][ T8280] netlink: 'syz.2.767': attribute type 2 has an invalid length.
[  315.458522][ T8280] netlink: 23 bytes leftover after parsing attributes in process `syz.2.767'.
[  316.664413][ T8299] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  316.796434][ T8305] (null): rxe_set_mtu: Set mtu to 1024
[  316.803836][ T8305] rdma_rxe: rxe_newlink: failed to add bond0
[  316.820442][ T8305] netlink: 'syz.1.775': attribute type 13 has an invalid length.
[  316.832639][ T8305] infiniband syz2: set active
[  316.976835][ T8305] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  317.002127][  T785] lo speed is unknown, defaulting to 1000
[  317.396197][ T8310] capability: warning: `syz.3.777' uses deprecated v2 capabilities in a way that may be insecure
[  317.540328][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  317.546708][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  317.708594][ T8320] loop2: detected capacity change from 0 to 512
[  317.727722][ T8320] EXT4-fs: Invalid want_extra_isize 95
[  318.692067][ T8329] netlink: 'syz.2.784': attribute type 13 has an invalid length.
[  318.762242][ T8329] infiniband syz1: set active
[  318.778259][ T8329] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  318.900460][ T8339] loop2: detected capacity change from 0 to 8
[  318.925848][ T8339] Filesystem uses "unknown" compression. This is not supported
[  318.944686][ T8340] sch_tbf: burst 4398 is lower than device lo mtu (11337746) !
[  319.487534][ T8347] netlink: 28 bytes leftover after parsing attributes in process `syz.1.789'.
[  319.990706][   T27] audit: type=1800 audit(1758849542.209:24): pid=8345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.788" name="/" dev="fuse" ino=3 res=0 errno=0
[  320.013090][ T8356] loop1: detected capacity change from 0 to 1024
[  320.160013][ T8356] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.257794][ T8363] netlink: 'syz.2.795': attribute type 13 has an invalid length.
[  320.293864][ T8363] infiniband syz1: set active
[  320.331528][ T8363] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  320.383200][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  322.194646][ T8403] loop3: detected capacity change from 0 to 4096
[  322.244368][ T8403] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  322.281829][ T8403] ntfs3: loop3: volume is dirty and "force" flag is not set!
[  323.158785][ T8417] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  323.872469][ T8435] loop3: detected capacity change from 0 to 4096
[  323.887978][ T8435] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  323.906881][ T8435] ntfs3: loop3: volume is dirty and "force" flag is not set!
[  324.225740][ T8442] loop3: detected capacity change from 0 to 128
[  324.233560][ T8442] EXT4-fs: Ignoring removed nomblk_io_submit option
[  324.240434][ T8442] ext3: Unknown parameter 'smackfsdef'
[  324.528541][ T8447] netlink: 'syz.1.825': attribute type 10 has an invalid length.
[  324.573679][ T8447] 8021q: adding VLAN 0 to HW filter on device batadv0
[  324.585765][ T8447] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  324.595203][ T8448] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  324.605930][ T8448] batman_adv: batadv0: Removing interface: batadv_slave_0
[  324.697317][ T8448] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  324.710280][ T8448] batman_adv: batadv0: Removing interface: batadv_slave_1
[  324.934803][ T8448] bond0: (slave batadv0): Releasing backup interface
[  325.808211][ T8458] syz2: rxe_set_mtu: Set mtu to 1024
[  325.825611][ T8458] infiniband syz2: set active
[  325.876846][ T5884] lo speed is unknown, defaulting to 1000
[  325.904174][ T8463] loop0: detected capacity change from 0 to 512
[  325.933678][ T8463] EXT4-fs (loop0): Test dummy encryption mode enabled
[  325.942213][ T8463] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  325.988287][ T8463] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2244: inode #15: comm syz.0.830: corrupted in-inode xattr: e_name out of bounds
[  326.050915][ T8463] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  326.102596][ T8463] EXT4-fs (loop0): 1 orphan inode deleted
[  326.132782][ T8463] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  326.220851][   T27] audit: type=1800 audit(1758849548.449:25): pid=8463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.830" name="file2" dev="loop0" ino=15 res=0 errno=0
[  326.501706][ T8463] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  326.702580][ T5798] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.752852][ T8486] loop1: detected capacity change from 0 to 128
[  327.855467][ T8487] loop0: detected capacity change from 0 to 4096
[  327.859353][ T8491] loop3: detected capacity change from 0 to 256
[  327.884994][ T8487] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  327.913471][ T8486] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  327.940766][ T8487] ntfs3: loop0: volume is dirty and "force" flag is not set!
[  327.975160][ T8491] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  327.983812][ T8486] ext4 filesystem being mounted at /205/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  328.354421][ T8496] loop0: detected capacity change from 0 to 128
[  328.361988][ T8496] EXT4-fs: Ignoring removed nomblk_io_submit option
[  328.368678][ T8496] ext3: Unknown parameter 'smackfsdef'
[  328.468108][ T8066] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  329.057730][ T8509] loop3: detected capacity change from 0 to 4096
[  329.104088][ T8509] EXT4-fs (loop3): Test dummy encryption mode enabled
[  329.145453][ T8509] EXT4-fs (loop3): stripe (6) is not aligned with cluster size (16), stripe is disabled
[  329.191710][ T8509] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  329.397603][ T8509] Quota error (device loop3): do_check_range: Getting block 589828 out of range 1-5
[  330.101706][ T8509] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  330.172732][ T8509] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.843: Failed to acquire dquot type 1
[  330.273555][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.722400][ T5793] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  331.566167][ T8524] loop3: detected capacity change from 0 to 128
[  331.580677][ T8524] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  331.620176][ T8528] loop2: detected capacity change from 0 to 164
[  331.636923][ T8524] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  331.657881][ T8528] Unable to read rock-ridge attributes
[  332.042345][ T8535] loop1: detected capacity change from 0 to 128
[  332.129816][ T8535] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  332.152742][ T8537] loop2: detected capacity change from 0 to 512
[  332.203757][ T8535] ext4 filesystem being mounted at /207/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  332.288611][ T8542] loop0: detected capacity change from 0 to 1024
[  332.708316][ T8537] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  332.816104][ T8537] ext4 filesystem being mounted at /212/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  332.839390][ T8542] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  332.911103][ T8542] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869)
[  333.007222][ T8542] EXT4-fs error (device loop0): __ext4_iget:5053: inode #2: block 127754: comm syz.0.854: invalid block
[  333.124944][ T8542] EXT4-fs (loop0): no journal found
[  333.141622][ T8542] EXT4-fs (loop0): can't get journal size
[  333.163191][ T8542] EXT4-fs error (device loop0): __ext4_iget:5053: inode #2: block 127754: comm syz.0.854: invalid block
[  333.205169][ T8542] EXT4-fs (loop0): get root inode failed
[  333.218302][ T8542] EXT4-fs (loop0): mount failed
[  333.253465][ T8552] loop3: detected capacity change from 0 to 128
[  333.275890][ T8552] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  333.318067][ T8552] ext4 filesystem being mounted at /210/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  333.435134][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.793239][ T8558] loop2: detected capacity change from 0 to 256
[  333.864339][ T8558] FAT-fs (loop2): Directory bread(block 1285) failed
[  333.901411][ T8560] netlink: 'syz.0.858': attribute type 12 has an invalid length.
[  333.910803][ T8560] netlink: 'syz.0.858': attribute type 29 has an invalid length.
[  333.913140][ T5794] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  333.938827][ T8560] netlink: 148 bytes leftover after parsing attributes in process `syz.0.858'.
[  333.946923][ T8558] FAT-fs (loop2): Directory bread(block 1285) failed
[  333.971074][ T8560] netlink: 'syz.0.858': attribute type 2 has an invalid length.
[  333.991069][ T8560] netlink: 23 bytes leftover after parsing attributes in process `syz.0.858'.
[  334.483576][ T5793] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  335.674789][ T8581] loop0: detected capacity change from 0 to 512
[  335.801598][ T8581] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  335.881346][ T8585] loop3: detected capacity change from 0 to 128
[  335.948441][ T8581] EXT4-fs (loop0): 1 truncate cleaned up
[  335.959753][ T8581] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.011078][ T8585] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  336.110287][ T8585] ext4 filesystem being mounted at /212/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  336.258365][ T8581] EXT4-fs error (device loop0): __ext4_get_inode_loc:4483: comm syz.0.865: Invalid inode table block 5 in block_group 0
[  336.284873][ T8581] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  336.296581][ T8581] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #18: comm syz.0.865: mark_inode_dirty error
[  336.433236][ T8581] EXT4-fs error (device loop0): __ext4_get_inode_loc:4483: comm syz.0.865: Invalid inode table block 5 in block_group 0
[  336.456656][ T8581] EXT4-fs error (device loop0): ext4_get_max_inline_size:116: inode #18: comm syz.0.865: can't get inode location 18
[  336.528781][ T5794] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  336.552561][ T8581] EXT4-fs error (device loop0): __ext4_get_inode_loc:4483: comm syz.0.865: Invalid inode table block 5 in block_group 0
[  336.645127][ T8596] loop3: detected capacity change from 0 to 512
[  336.677197][ T8596] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  336.696484][ T8581] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5902: Corrupt filesystem
[  336.707761][ T8596] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[  336.718761][ T8596] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  336.727629][ T8596] System zones: 0-2, 18-18, 34-34
[  336.733641][ T8581] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #18: comm syz.0.865: mark_inode_dirty error
[  336.738134][ T8596] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.869: iget: bad i_size value: 360287970189639680
[  336.759970][ T8596] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.869: couldn't read orphan inode 15 (err -117)
[  336.792076][ T8581] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:478: comm syz.0.865: Invalid block bitmap block 3 in block_group 0
[  336.801045][ T8596] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  336.882840][ T8581] EXT4-fs error (device loop0): __ext4_get_inode_loc:4483: comm syz.0.865: Invalid inode table block 5 in block_group 0
[  337.599666][ T5798] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.907900][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.694619][ T8614] loop3: detected capacity change from 0 to 1024
[  338.834543][ T8618] loop1: detected capacity change from 0 to 128
[  338.881287][ T8618] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  338.895993][ T8618] ext4 filesystem being mounted at /213/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  338.931454][   T48] hfsplus: b-tree write err: -5, ino 4
[  339.303267][ T5793] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  339.634722][ T8628] input: syz0 as /devices/virtual/input/input7
[  339.653370][ T8630] loop3: detected capacity change from 0 to 16
[  339.726524][ T8630] erofs: (device loop3): mounted with root inode @ nid 36.
[  339.785950][ T8630] xt_hashlimit: max too large, truncated to 1048576
[  340.779961][ T8645] loop3: detected capacity change from 0 to 128
[  340.797150][ T8645] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  340.849322][ T8645] ext4 filesystem being mounted at /219/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  340.926384][ T8649] loop2: detected capacity change from 0 to 256
[  341.412647][ T8658] loop2: detected capacity change from 0 to 16
[  341.463100][ T8658] erofs: (device loop2): mounted with root inode @ nid 36.
[  341.783814][   T27] audit: type=1800 audit(1758849564.009:26): pid=8658 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.892" name="file1" dev="loop2" ino=86 res=0 errno=0
[  342.254414][ T5794] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  342.371946][ T5808] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  342.384474][ T5808] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  342.399586][ T5808] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  342.409381][ T5808] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  342.417674][ T5808] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  342.425283][ T5808] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  342.622317][ T8662] lo speed is unknown, defaulting to 1000
[  342.631188][ T8666] (null): rxe_set_mtu: Set mtu to 1024
[  342.696691][ T8671] netlink: 'syz.1.895': attribute type 13 has an invalid length.
[  342.719365][ T8671] infiniband syz2: set active
[  342.745091][ T8671] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  342.797829][   T28] lo speed is unknown, defaulting to 1000
[  343.165386][ T8679] loop2: detected capacity change from 0 to 4096
[  343.190047][ T8679] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  343.283036][ T8679] ntfs3: loop2: volume is dirty and "force" flag is not set!
[  343.645467][ T8683] loop2: detected capacity change from 0 to 1024
[  343.650641][ T8666] rdma_rxe: rxe_newlink: failed to add bond0
[  343.679439][ T8683] EXT4-fs: Ignoring removed nomblk_io_submit option
[  343.776021][ T8683] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.923378][ T8689] loop1: detected capacity change from 0 to 128
[  343.991858][ T8689] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  344.072098][ T8689] ext4 filesystem being mounted at /220/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  344.366598][ T8662] chnl_net:caif_netlink_parms(): no params data found
[  344.671942][ T5808] Bluetooth: hci3: command tx timeout
[  344.860639][ T5793] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  344.870156][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.113972][ T8662] bridge0: port 1(bridge_slave_0) entered blocking state
[  345.125679][ T8662] bridge0: port 1(bridge_slave_0) entered disabled state
[  345.146201][ T8662] bridge_slave_0: entered allmulticast mode
[  345.156309][ T8662] bridge_slave_0: entered promiscuous mode
[  345.168358][ T8662] bridge0: port 2(bridge_slave_1) entered blocking state
[  345.178345][ T8662] bridge0: port 2(bridge_slave_1) entered disabled state
[  345.187750][ T8662] bridge_slave_1: entered allmulticast mode
[  345.356600][ T8662] bridge_slave_1: entered promiscuous mode
[  345.427068][ T8662] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  345.558098][ T8662] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  346.132233][ T8662] team0: Port device team_slave_0 added
[  346.152572][ T8662] team0: Port device team_slave_1 added
[  346.279557][ T8716] syz1: rxe_newlink: already configured on bond0
[  346.378662][ T8716] netlink: 'syz.2.908': attribute type 13 has an invalid length.
[  346.404895][ T8716] infiniband syz1: set active
[  346.503202][ T8716] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  346.893899][ T8662] batman_adv: batadv0: Adding interface: batadv_slave_0
[  346.901505][ T8662] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  346.983293][ T5808] Bluetooth: hci3: command tx timeout
[  347.447369][ T8724] loop1: detected capacity change from 0 to 128
[  347.472398][ T8724] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  347.484881][ T8662] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  347.528809][ T8662] batman_adv: batadv0: Adding interface: batadv_slave_1
[  347.531112][ T8724] ext4 filesystem being mounted at /223/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  347.537728][ T8662] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  347.595146][ T8662] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  347.997573][ T8662] hsr_slave_0: entered promiscuous mode
[  348.023568][ T8662] hsr_slave_1: entered promiscuous mode
[  348.281029][ T8662] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  348.369007][ T8662] Cannot create hsr debugfs directory
[  348.413216][ T5793] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  349.049298][ T5808] Bluetooth: hci3: command tx timeout
[  349.614533][ T8747] loop3: detected capacity change from 0 to 1024
[  349.751675][ T8747] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  349.799304][ T8747] ext4 filesystem being mounted at /227/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  349.822923][ T8662] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  349.883068][ T8662] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  349.954582][ T8662] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  349.990593][ T8662] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  350.040881][ T8754] loop1: detected capacity change from 0 to 16
[  350.064349][ T8747] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Out of memory
[  350.084072][ T8747] EXT4-fs error (device loop3): ext4_setattr:5584: inode #15: comm syz.3.916: mark_inode_dirty error
[  350.092963][ T8754] erofs: (device loop1): mounted with root inode @ nid 36.
[  350.114809][ T8747] EXT4-fs error (device loop3) in ext4_setattr:5645: Out of memory
[  350.237453][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  350.471412][ T8662] 8021q: adding VLAN 0 to HW filter on device bond0
[  350.531799][ T8662] 8021q: adding VLAN 0 to HW filter on device team0
[  350.566660][ T3464] bridge0: port 1(bridge_slave_0) entered blocking state
[  350.574017][ T3464] bridge0: port 1(bridge_slave_0) entered forwarding state
[  350.617064][ T2979] bridge0: port 2(bridge_slave_1) entered blocking state
[  350.624527][ T2979] bridge0: port 2(bridge_slave_1) entered forwarding state
[  351.756886][ T5808] Bluetooth: hci3: command tx timeout
[  352.388366][ T8783] (null): rxe_set_mtu: Set mtu to 1024
[  352.401685][ T8783] rdma_rxe: rxe_newlink: failed to add bond0
[  352.428033][ T8783] netlink: 'syz.3.925': attribute type 13 has an invalid length.
[  352.510878][ T8783] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  352.628344][ T8791] loop2: detected capacity change from 0 to 8
[  352.821892][ T8796] netlink: 'syz.3.927': attribute type 4 has an invalid length.
[  352.938369][ T8794] lo speed is unknown, defaulting to 1000
[  352.954290][ T8662] 8021q: adding VLAN 0 to HW filter on device batadv0
[  353.994484][ T8662] veth0_vlan: entered promiscuous mode
[  354.044599][ T8662] veth1_vlan: entered promiscuous mode
[  354.198756][ T8662] veth0_macvtap: entered promiscuous mode
[  354.235900][ T8662] veth1_macvtap: entered promiscuous mode
[  354.296512][ T8662] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  354.348292][ T8662] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  354.372294][ T8662] batman_adv: batadv0: Interface activated: batadv_slave_0
[  354.402859][ T8662] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  354.434169][ T8662] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  354.456327][ T8662] batman_adv: batadv0: Interface activated: batadv_slave_1
[  354.524013][ T8662] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  354.553876][ T8662] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  354.577475][ T8662] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  354.607092][ T8662] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  355.056888][ T5796] SQUASHFS error: Unable to read directory block [631:72]
[  355.078690][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  355.102478][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  355.114064][ T5796] SQUASHFS error: Unable to read inode 0xe3
[  355.131432][ T5796] SQUASHFS error: Unable to read inode 0xe3
[  355.179898][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  355.196326][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  355.695368][ T5796] bond0: (slave syz_tun): Releasing backup interface
[  356.079177][ T8814] netlink: 20 bytes leftover after parsing attributes in process `syz.1.931'.
[  357.417346][ T5799] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  357.428191][ T5799] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  357.440600][ T5799] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  357.454633][ T5799] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  357.463240][ T5799] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  357.470862][ T5799] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  357.575330][ T8843] lo speed is unknown, defaulting to 1000
[  358.338264][ T8852] loop1: detected capacity change from 0 to 512
[  358.476638][ T8852] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  358.508155][   T23] usb 2-1: dvb_usb_v2: Did not find the firmware file 'dvb-usb-lme2510c-rs2000.fw' (status -110). You can use <kernel_dir>/scripts/get_dvb_firmware to get the firmware
[  358.529224][   T23] dvb_usb_lmedm04: probe of 2-1:2.0 failed with error -110
[  358.540233][   T23] usb 2-1: USB disconnect, device number 4
[  358.552013][ T8852] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  358.815428][ T8865] loop3: detected capacity change from 0 to 1024
[  358.821379][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  358.824764][ T8865] EXT4-fs: Ignoring removed bh option
[  358.854128][ T8865] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  358.901061][ T8865] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  359.114523][ T8843] chnl_net:caif_netlink_parms(): no params data found
[  359.270593][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.481969][ T8843] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.500674][ T8843] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.508059][ T8843] bridge_slave_0: entered allmulticast mode
[  359.526323][ T8843] bridge_slave_0: entered promiscuous mode
[  359.530882][ T5808] Bluetooth: hci2: command tx timeout
[  359.560134][ T8843] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.587873][ T8843] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.616634][ T8843] bridge_slave_1: entered allmulticast mode
[  359.650673][ T8843] bridge_slave_1: entered promiscuous mode
[  359.753033][ T8882] loop1: detected capacity change from 0 to 2048
[  359.797090][ T8843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  359.798163][ T8882] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  359.832140][ T8843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  359.834667][ T8882] UDF-fs: Scanning with blocksize 512 failed
[  359.878037][ T8882] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  360.001583][    C1] operation not supported error, dev loop1, sector 0 op 0x9:(WRITE_ZEROES) flags 0x8000800 phys_seg 0 prio class 2
[  360.014176][ T8843] team0: Port device team_slave_0 added
[  360.040880][ T8843] team0: Port device team_slave_1 added
[  360.100889][ T8889] loop4: detected capacity change from 0 to 512
[  360.132542][ T8889] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  360.152396][ T8843] batman_adv: batadv0: Adding interface: batadv_slave_0
[  360.161886][ T8843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  360.203771][ T8843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  360.226632][ T8889] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  360.273792][ T8843] batman_adv: batadv0: Adding interface: batadv_slave_1
[  360.281651][ T8889] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  360.290900][ T8843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  360.317750][ T8843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  360.354224][ T8889] System zones: 0-1, 15-15, 18-18, 34-34
[  360.363224][ T8889] EXT4-fs (loop4): orphan cleanup on readonly fs
[  360.370943][ T8889] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0
[  360.390672][ T8889] EXT4-fs warning (device loop4): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  360.413092][ T8889] EXT4-fs (loop4): Cannot turn on quotas: error -22
[  360.425971][ T8889] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.956: bg 0: block 40: padding at end of block bitmap is not set
[  360.462206][ T8889] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  360.489745][ T8889] EXT4-fs (loop4): 1 truncate cleaned up
[  360.496865][ T8889] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  360.518589][ T8843] hsr_slave_0: entered promiscuous mode
[  360.555373][ T8843] hsr_slave_1: entered promiscuous mode
[  360.588111][ T8843] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  360.593664][ T8895] loop1: detected capacity change from 0 to 256
[  360.615399][ T8843] Cannot create hsr debugfs directory
[  360.791199][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  360.829130][   T23] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  360.900628][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  360.937125][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  360.981012][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  361.032763][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  361.052593][   T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  361.060751][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  361.086366][   T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  361.089025][    T8] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  361.110227][   T23] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  361.119508][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  361.162487][   T23] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  361.169101][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  361.190663][   T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.217770][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  361.221838][   T23] usb 5-1: config 0 descriptor??
[  361.232783][ T8843] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  361.240012][ T8895] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  361.262770][ T8843] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  361.283852][   T27] audit: type=1800 audit(1758849583.509:27): pid=8895 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.957" name="file1" dev="loop1" ino=1048603 res=0 errno=0
[  361.309233][ T8843] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  361.336332][ T8843] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  361.401436][    T8] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  361.419128][    T8] usb 2-1: config 0 interface 0 has no altsetting 0
[  361.425940][    T8] usb 2-1: New USB device found, idVendor=057e, idProduct=2009, bcdDevice= 0.00
[  361.435844][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  361.455514][    T8] usb 2-1: config 0 descriptor??
[  361.609545][ T5808] Bluetooth: hci2: command tx timeout
[  361.679711][   T23] usbhid 5-1:0.0: can't add hid device: -71
[  361.696206][   T23] usbhid: probe of 5-1:0.0 failed with error -71
[  361.715925][   T23] usb 5-1: USB disconnect, device number 2
[  361.777562][ T8843] 8021q: adding VLAN 0 to HW filter on device bond0
[  361.835096][ T8843] 8021q: adding VLAN 0 to HW filter on device team0
[  361.888033][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.895237][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[  361.948566][    T8] nintendo 0003:057E:2009.0004: hidraw0: USB HID v80.00 Device [HID 057e:2009] on usb-dummy_hcd.1-1/input0
[  361.969520][ T2977] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.976867][ T2977] bridge0: port 2(bridge_slave_1) entered forwarding state
[  362.071660][    T8] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  362.123499][    T8] nintendo 0003:057E:2009.0004: using factory cal for left stick
[  362.150737][    T8] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  362.169351][    T8] nintendo 0003:057E:2009.0004: using factory cal for right stick
[  362.190057][    T8] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  362.212066][    T8] nintendo 0003:057E:2009.0004: Failed to read left stick cal, using defaults; e=-38
[  362.227759][    T8] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  362.236418][    T8] nintendo 0003:057E:2009.0004: Failed to read right stick cal, using defaults; e=-38
[  362.248134][    T8] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  362.260620][    T8] nintendo 0003:057E:2009.0004: using factory cal for IMU
[  362.268210][    T8] nintendo 0003:057E:2009.0004: failed reading SPI flash; ret=-38
[  362.280325][    T8] nintendo 0003:057E:2009.0004: Failed to read IMU cal, using defaults; ret=-38
[  362.300161][    T8] nintendo 0003:057E:2009.0004: Unable to read IMU calibration data
[  362.340056][    T8] nintendo 0003:057E:2009.0004: Failed to set report mode; ret=-38
[  362.358329][    T8] nintendo 0003:057E:2009.0004: Failed to initialize controller; ret=-38
[  362.386488][ T8662] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.404616][    T8] nintendo 0003:057E:2009.0004: probe - fail = -38
[  362.426522][    T8] nintendo: probe of 0003:057E:2009.0004 failed with error -38
[  362.484271][    T8] usb 2-1: USB disconnect, device number 5
[  362.613456][ T8843] 8021q: adding VLAN 0 to HW filter on device batadv0
[  362.719123][ T8922] netlink: 'syz.4.962': attribute type 12 has an invalid length.
[  362.727283][ T8922] netlink: 'syz.4.962': attribute type 29 has an invalid length.
[  362.754377][ T8922] netlink: 148 bytes leftover after parsing attributes in process `syz.4.962'.
[  362.783106][ T8922] netlink: 'syz.4.962': attribute type 2 has an invalid length.
[  362.809743][ T8922] netlink: 'syz.4.962': attribute type 3 has an invalid length.
[  362.829106][ T8922] netlink: 11 bytes leftover after parsing attributes in process `syz.4.962'.
[  363.358252][ T8843] veth0_vlan: entered promiscuous mode
[  363.397606][ T8843] veth1_vlan: entered promiscuous mode
[  363.506988][ T8843] veth0_macvtap: entered promiscuous mode
[  363.543548][ T8843] veth1_macvtap: entered promiscuous mode
[  363.635993][ T8843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  363.689419][ T5808] Bluetooth: hci2: command tx timeout
[  363.710033][ T8843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  363.783372][ T8843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  363.858788][ T8843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  363.892405][ T8843] batman_adv: batadv0: Interface activated: batadv_slave_0
[  363.915963][ T8843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  363.952869][ T8843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  363.963923][ T8843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  363.980251][ T8843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  363.996677][ T8843] batman_adv: batadv0: Interface activated: batadv_slave_1
[  364.069817][ T8843] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  364.086989][ T8843] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  364.122826][ T8843] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  364.142047][ T8843] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  364.447918][ T3452] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  364.465466][ T3452] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  364.597424][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  364.614248][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  364.933326][ T8953] netlink: 8 bytes leftover after parsing attributes in process `syz.5.934'.
[  365.074753][ T8958] netlink: 'syz.4.972': attribute type 12 has an invalid length.
[  365.092439][ T8958] netlink: 'syz.4.972': attribute type 29 has an invalid length.
[  365.107692][ T8958] netlink: 148 bytes leftover after parsing attributes in process `syz.4.972'.
[  365.118813][ T8958] netlink: 'syz.4.972': attribute type 2 has an invalid length.
[  365.141000][ T8958] netlink: 'syz.4.972': attribute type 3 has an invalid length.
[  365.149566][ T8958] netlink: 11 bytes leftover after parsing attributes in process `syz.4.972'.
[  365.314068][ T8960] loop5: detected capacity change from 0 to 2048
[  365.442507][ T8960]  loop5: p1 p3
[  365.473743][ T8960] loop5: p3 start 8388352 is beyond EOD, truncated
[  365.789185][ T5808] Bluetooth: hci2: command tx timeout
[  366.463146][ T8973] (null): rxe_set_mtu: Set mtu to 1024
[  366.472476][ T8973] rdma_rxe: rxe_newlink: failed to add bond0
[  366.479126][ T8975] "syz.3.979" (8975) uses obsolete ecb(arc4) skcipher
[  366.507500][ T8973] netlink: 'syz.4.978': attribute type 13 has an invalid length.
[  366.510786][ T8971] loop5: detected capacity change from 0 to 1024
[  366.531605][ T8066] udevd[8066]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory
[  366.772032][ T8973] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  366.829082][ T3464] hfsplus: b-tree write err: -5, ino 4
[  367.277513][ T8983] loop4: detected capacity change from 0 to 4096
[  367.375070][ T8983] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  367.510503][ T8983] ntfs3: loop4: volume is dirty and "force" flag is not set!
[  367.970798][ T8993] loop4: detected capacity change from 0 to 128
[  367.978567][ T8993] EXT4-fs: Ignoring removed nomblk_io_submit option
[  367.985715][ T8993] ext3: Unknown parameter 'smackfsdef'
[  368.022238][ T8066] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  368.596161][ T8996] loop1: detected capacity change from 0 to 16
[  368.626059][ T8998] loop4: detected capacity change from 0 to 512
[  368.629613][ T8996] erofs: (device loop1): mounted with root inode @ nid 36.
[  368.699866][ T8998] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  368.779253][ T8998] EXT4-fs (loop4): 1 truncate cleaned up
[  368.787379][ T8998] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  368.813617][   T27] audit: type=1800 audit(1758849591.039:28): pid=8996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.985" name="file1" dev="loop1" ino=86 res=0 errno=0
[  368.876049][ T8998] EXT4-fs warning (device loop4): verify_group_input:169: Last group not full
[  369.012730][ T8662] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  369.263003][ T9009] bridge0: port 3(ip6gretap0) entered blocking state
[  369.328070][ T9009] bridge0: port 3(ip6gretap0) entered disabled state
[  369.350444][ T9009] ip6gretap0: entered allmulticast mode
[  369.378763][ T9015] loop5: detected capacity change from 0 to 8
[  369.385657][ T9009] ip6gretap0: entered promiscuous mode
[  369.431391][ T9015] SQUASHFS error: zlib decompression failed, data probably corrupt
[  369.453057][ T9009] bridge0: port 3(ip6gretap0) entered blocking state
[  369.460273][ T9009] bridge0: port 3(ip6gretap0) entered forwarding state
[  369.479047][ T9015] SQUASHFS error: Failed to read block 0x9b: -5
[  369.494742][ T9015] SQUASHFS error: Unable to read metadata cache entry [99]
[  369.546621][ T9015] SQUASHFS error: Unable to read inode 0x127
[  370.728528][ T9034] loop1: detected capacity change from 0 to 164
[  370.801236][ T9035] loop5: detected capacity change from 0 to 2048
[  370.826524][ T9035] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=3932051, location=3932051
[  370.888322][ T9035] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  372.337335][ T9053] loop5: detected capacity change from 0 to 8
[  372.449120][  T965] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  372.672504][  T965] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  372.705746][  T965] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3
[  372.732274][ T8843] SQUASHFS error: Unable to read directory block [1d0:22]
[  372.737777][  T965] usb 4-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[  372.761150][ T8843] SQUASHFS error: Unable to read directory block [1d0:22]
[  372.772037][ T9056] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1004'.
[  372.781673][ T8843] SQUASHFS error: Unknown inode type 0 in squashfs_iget!
[  372.789097][  T965] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  372.799268][ T8843] SQUASHFS error: Unknown inode type 0 in squashfs_iget!
[  372.816708][  T965] usb 4-1: config 0 descriptor??
[  373.154415][ T9058] loop1: detected capacity change from 0 to 2048
[  373.252976][ T9058] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 1344: 0x15 != 0x00
[  373.270615][  T965] Bluetooth: Can't get version to change to load ram patch err
[  373.279582][ T9058] UDF-fs: warning (device loop1): udf_fill_super: No fileset found
[  373.304941][  T965] Bluetooth: Loading patch file failed
[  373.335927][  T965] ath3k: probe of 4-1:0.0 failed with error -71
[  373.357573][  T965] usb 4-1: USB disconnect, device number 6
[  373.622186][   T42] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.816519][   T42] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.011491][   T42] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.034633][ T9070] loop3: detected capacity change from 0 to 1024
[  374.054347][ T9070] ext4: Unknown parameter 'pr'
[  374.772567][   T42] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.360871][ T9083] infiniband syz2: set active
[  375.426801][ T5884] lo speed is unknown, defaulting to 1000
[  375.469507][ T5799] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  375.490361][ T5799] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  375.499915][ T5799] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  375.514922][ T5799] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  375.538675][ T5799] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  375.546346][ T5799] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  375.705520][ T9087] loop3: detected capacity change from 0 to 512
[  375.707651][ T9084] lo speed is unknown, defaulting to 1000
[  375.736817][ T9087] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  375.925714][ T9087] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.1016: bad orphan inode 16
[  375.941172][ T9087] ext4_test_bit(bit=15, block=4) = 0
[  375.946559][ T9087] EXT4-fs (loop3): 1 orphan inode deleted
[  375.955803][ T9087] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  376.131344][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  376.702984][ T9103] loop3: detected capacity change from 0 to 256
[  376.763915][ T9103] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  376.791311][ T9103] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  376.851889][ T9103] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  377.703953][ T9110] loop3: detected capacity change from 0 to 128
[  377.740247][ T5799] Bluetooth: hci2: command tx timeout
[  378.378315][ T9128] loop3: detected capacity change from 0 to 512
[  378.444255][ T9128] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  378.492803][ T9128] ext4 filesystem being mounted at /264/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  378.550713][ T5852] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  378.576711][   T27] audit: type=1800 audit(1758849600.799:29): pid=9128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1022" name="bus" dev="loop3" ino=18 res=0 errno=0
[  378.604920][   T27] audit: type=1804 audit(1758849600.829:30): pid=9128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1022" name="/newroot/264/file0/bus" dev="loop3" ino=18 res=1 errno=0
[  378.680900][ T9132] infiniband syz2: set active
[  378.716542][ T5884] lo speed is unknown, defaulting to 1000
[  378.767017][ T5852] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30
[  378.792167][ T5852] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  378.836374][ T5852] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  378.857084][ T5852] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196
[  378.880101][ T5852] usb 5-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00
[  378.908172][ T9139] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1025'.
[  378.917516][ T5852] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.953300][ T5852] usb 5-1: config 0 descriptor??
[  378.982565][ T9084] chnl_net:caif_netlink_parms(): no params data found
[  378.986999][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  379.000334][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  379.287314][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.382520][ T5852] holtek_kbd 0003:04D9:A055.0005: item fetching failed at offset 0/1
[  379.454569][ T5852] holtek_kbd: probe of 0003:04D9:A055.0005 failed with error -22
[  379.587987][ T5852] usb 5-1: USB disconnect, device number 3
[  379.769716][ T5799] Bluetooth: hci2: command tx timeout
[  380.406645][ T9084] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.449313][ T9084] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.497657][ T9084] bridge_slave_0: entered allmulticast mode
[  380.566987][ T9084] bridge_slave_0: entered promiscuous mode
[  380.604953][ T9084] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.645517][ T9084] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.689729][ T9084] bridge_slave_1: entered allmulticast mode
[  380.707590][ T9084] bridge_slave_1: entered promiscuous mode
[  380.768826][ T9172] loop3: detected capacity change from 0 to 256
[  380.809572][ T9172] FAT-fs (loop3): unable to read block(119779167456) for building NFS inode
[  380.981170][   T42] hsr_slave_0: left promiscuous mode
[  381.019304][   T42] hsr_slave_1: left promiscuous mode
[  381.032278][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  381.054039][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  381.066166][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  381.082309][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  381.146263][   T42] bridge_slave_1: left allmulticast mode
[  381.155500][   T42] bridge_slave_1: left promiscuous mode
[  381.166082][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.185889][   T42] bridge_slave_0: left allmulticast mode
[  381.194785][   T42] bridge_slave_0: left promiscuous mode
[  381.202004][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.219072][  T785] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  381.346820][   T42] veth1_macvtap: left promiscuous mode
[  381.357329][   T42] veth0_macvtap: left promiscuous mode
[  381.366941][   T42] veth1_vlan: left promiscuous mode
[  381.375257][   T42] veth0_vlan: left promiscuous mode
[  381.421645][  T785] usb 5-1: unable to get BOS descriptor or descriptor too short
[  381.446351][  T785] usb 5-1: not running at top speed; connect to a high speed hub
[  381.469514][  T785] usb 5-1: config 3 has an invalid interface number: 86 but max is 0
[  381.481459][  T785] usb 5-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config
[  381.503868][  T785] usb 5-1: config 3 has no interface number 0
[  381.519065][  T785] usb 5-1: config 3 interface 86 altsetting 16 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  381.548040][  T785] usb 5-1: config 3 interface 86 has no altsetting 0
[  381.571941][  T785] usb 5-1: New USB device found, idVendor=19d2, idProduct=8241, bcdDevice=b0.5e
[  381.587366][  T785] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  381.607884][  T785] usb 5-1: Product: syz
[  381.673505][  T785] usb 5-1: Manufacturer: syz
[  381.689035][  T785] usb 5-1: SerialNumber: syz
[  381.849136][ T5799] Bluetooth: hci2: command tx timeout
[  381.932102][  T785] usb 5-1: bad CDC descriptors
[  381.945985][  T785] usb 5-1: USB disconnect, device number 4
[  382.563638][ T9182] netlink: 2412 bytes leftover after parsing attributes in process `syz.4.1034'.
[  382.652500][   T42] team0 (unregistering): Port device team_slave_1 removed
[  382.719978][   T42] team0 (unregistering): Port device team_slave_0 removed
[  382.788595][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  382.861250][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  383.590835][   T42] bond0 (unregistering): Released all slaves
[  383.704068][ T9084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  383.781885][ T9179] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1033'.
[  383.815156][ T9084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  383.939118][ T5799] Bluetooth: hci2: command tx timeout
[  384.017669][ T9188] loop3: detected capacity change from 0 to 512
[  384.055751][ T9188] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  384.069376][ T9188] EXT4-fs (loop3): orphan cleanup on readonly fs
[  384.090756][ T9192] loop4: detected capacity change from 0 to 512
[  384.123243][ T9084] team0: Port device team_slave_0 added
[  384.132271][ T9189] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  384.139643][ T9188] Quota error (device loop3): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[  384.153979][ T9188] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  384.170964][ T9192] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  384.171195][ T9188] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  384.184655][ T9084] team0: Port device team_slave_1 added
[  384.225926][ T9192] EXT4-fs (loop4): orphan cleanup on readonly fs
[  384.256506][ T9192] EXT4-fs error (device loop4): __ext4_iget:5053: inode #11: block 8: comm syz.4.1037: invalid block
[  384.274748][ T9188] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1038: bg 0: block 40: padding at end of block bitmap is not set
[  384.306879][ T9192] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.1037: couldn't read orphan inode 11 (err -117)
[  384.371229][ T9188] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  384.434119][ T9192] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  384.463362][ T9188] EXT4-fs (loop3): 1 truncate cleaned up
[  384.474808][ T9084] batman_adv: batadv0: Adding interface: batadv_slave_0
[  384.480805][ T9188] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  384.494841][ T9084] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  384.536495][ T9188] EXT4-fs error (device loop3): ext4_get_link:104: inode #16: comm syz.3.1038: bad symlink.
[  384.568266][ T9084] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  384.599171][ T8662] EXT4-fs error (device loop4): ext4_readdir:263: inode #2: block 13: comm syz-executor: path /22/file0: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=16, rec_len=127, size=1024 fake=0
[  384.632485][ T8662] EXT4-fs error (device loop4): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 11
[  384.668649][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.690826][ T9084] batman_adv: batadv0: Adding interface: batadv_slave_1
[  384.697854][ T9084] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  384.703983][ T8662] EXT4-fs error (device loop4): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 11
[  384.810909][ T9084] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  385.239144][ T9084] hsr_slave_0: entered promiscuous mode
[  385.247522][ T9084] hsr_slave_1: entered promiscuous mode
[  385.254429][ T9084] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  385.263488][ T9084] Cannot create hsr debugfs directory
[  385.368675][ T8662] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  385.547426][   T42] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  385.775836][   T42] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.108494][   T42] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.261009][   T42] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.916477][ T9084] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  386.980665][ T9084] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  387.060228][ T9084] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  387.112696][ T9084] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  387.244130][   T42] bridge0: port 3(ip6gretap0) entered disabled state
[  387.457514][   T42] ip6gretap0 (unregistering): left allmulticast mode
[  387.498203][   T42] ip6gretap0 (unregistering): left promiscuous mode
[  387.502508][ T5808] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  387.516747][ T5808] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  387.518661][   T42] bridge0: port 3(ip6gretap0) entered disabled state
[  387.538174][ T5808] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  387.557330][ T5808] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  387.566375][ T5808] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  387.637355][ T5808] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  388.932144][ T9237] lo speed is unknown, defaulting to 1000
[  389.335703][ T9084] 8021q: adding VLAN 0 to HW filter on device bond0
[  389.527673][ T9084] 8021q: adding VLAN 0 to HW filter on device team0
[  389.552430][ T3452] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.559776][ T3452] bridge0: port 1(bridge_slave_0) entered forwarding state
[  389.692569][ T5799] Bluetooth: hci3: command tx timeout
[  390.218641][ T3452] bridge0: port 2(bridge_slave_1) entered blocking state
[  390.225958][ T3452] bridge0: port 2(bridge_slave_1) entered forwarding state
[  390.462931][ T9272] loop1: detected capacity change from 0 to 256
[  390.544236][ T9272] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  390.615577][ T9272] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  391.494767][ T9290] loop1: detected capacity change from 0 to 128
[  391.633669][ T9290] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  391.769624][ T5799] Bluetooth: hci3: command tx timeout
[  391.867763][ T9290] ext4 filesystem being mounted at /270/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  392.071979][ T9084] 8021q: adding VLAN 0 to HW filter on device batadv0
[  392.199605][ T9237] chnl_net:caif_netlink_parms(): no params data found
[  392.304221][ T5793] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  392.656076][ T9304] loop3: detected capacity change from 0 to 512
[  392.803522][   T42] hsr_slave_0: left promiscuous mode
[  392.818782][   T42] hsr_slave_1: left promiscuous mode
[  392.979815][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  393.146076][ T3474] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  393.179607][   T42] batman_adv: batadv0: Removing interface: batadv_slave_0
[  393.187844][ T9304] EXT4-fs (loop3): 1 orphan inode deleted
[  393.348094][ T9304] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  393.370540][ T3474] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:14: Failed to release dquot type 1
[  393.410574][   T42] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  393.451871][   T42] batman_adv: batadv0: Removing interface: batadv_slave_1
[  393.477289][ T9304] ext4 filesystem being mounted at /276/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  393.519984][   T42] bridge_slave_1: left allmulticast mode
[  393.525748][   T42] bridge_slave_1: left promiscuous mode
[  393.551208][   T42] bridge0: port 2(bridge_slave_1) entered disabled state
[  393.569878][   T42] bridge_slave_0: left allmulticast mode
[  393.579065][   T42] bridge_slave_0: left promiscuous mode
[  393.585193][   T42] bridge0: port 1(bridge_slave_0) entered disabled state
[  393.661035][   T27] audit: type=1800 audit(1758849615.879:31): pid=9304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1055" name="bus" dev="loop3" ino=16 res=0 errno=0
[  393.744359][   T42] veth1_macvtap: left promiscuous mode
[  393.816541][   T42] veth0_macvtap: left promiscuous mode
[  393.849156][ T5799] Bluetooth: hci3: command tx timeout
[  393.873227][   T42] veth1_vlan: left promiscuous mode
[  393.957736][   T42] veth0_vlan: left promiscuous mode
[  394.766793][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.934293][ T5799] Bluetooth: hci3: command tx timeout
[  396.088534][   T42] team0 (unregistering): Port device team_slave_1 removed
[  396.160012][   T42] team0 (unregistering): Port device team_slave_0 removed
[  396.225384][   T42] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  396.292518][   T42] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  397.059959][   T42] bond0 (unregistering): Released all slaves
[  397.234290][ T9237] bridge0: port 1(bridge_slave_0) entered blocking state
[  397.259770][ T9237] bridge0: port 1(bridge_slave_0) entered disabled state
[  397.267120][ T9237] bridge_slave_0: entered allmulticast mode
[  397.298831][ T9237] bridge_slave_0: entered promiscuous mode
[  397.319334][ T9237] bridge0: port 2(bridge_slave_1) entered blocking state
[  397.336803][ T9237] bridge0: port 2(bridge_slave_1) entered disabled state
[  397.361575][ T9237] bridge_slave_1: entered allmulticast mode
[  397.390107][ T9237] bridge_slave_1: entered promiscuous mode
[  397.443514][ T9353] loop3: detected capacity change from 0 to 2048
[  397.579081][ T9353] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  397.761067][ T9237] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  398.108465][ T9237] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  398.682423][ T9237] team0: Port device team_slave_0 added
[  398.691702][ T9363] loop1: detected capacity change from 0 to 256
[  398.721929][ T9237] team0: Port device team_slave_1 added
[  399.415590][ T9237] batman_adv: batadv0: Adding interface: batadv_slave_0
[  399.448399][ T9237] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  399.494630][ T9237] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  399.542795][ T9371] loop3: detected capacity change from 0 to 8
[  399.631881][ T9237] batman_adv: batadv0: Adding interface: batadv_slave_1
[  399.671962][ T9237] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  399.731121][ T9373] loop1: detected capacity change from 0 to 8
[  399.750506][ T9237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  399.785625][ T9373] SQUASHFS error: Failed to read block 0x4de: -5
[  399.818125][ T9373] SQUASHFS error: Failed to read block 0x4de: -5
[  399.844310][   T27] audit: type=1800 audit(1758849622.069:32): pid=9373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1065" name="file1" dev="loop1" ino=5 res=0 errno=0
[  399.848108][ T9084] veth0_vlan: entered promiscuous mode
[  399.902832][ T9084] veth1_vlan: entered promiscuous mode
[  400.155656][ T9237] hsr_slave_0: entered promiscuous mode
[  400.507460][ T9237] hsr_slave_1: entered promiscuous mode
[  400.601939][ T9237] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  400.629941][ T9237] Cannot create hsr debugfs directory
[  400.722917][ T9084] veth0_macvtap: entered promiscuous mode
[  400.818396][ T9084] veth1_macvtap: entered promiscuous mode
[  401.022685][ T9084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  401.035163][ T9084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  401.047690][ T9084] batman_adv: batadv0: Interface activated: batadv_slave_0
[  401.063421][ T9394] (null): rxe_set_mtu: Set mtu to 1024
[  401.071821][ T9394] rdma_rxe: rxe_newlink: failed to add bond0
[  401.089485][ T9084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  401.100359][ T9084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  401.116795][ T9084] batman_adv: batadv0: Interface activated: batadv_slave_1
[  401.134827][ T9394] netlink: 'syz.1.1069': attribute type 13 has an invalid length.
[  401.146108][ T9394] infiniband syz2: set active
[  401.160193][ T9394] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  401.187790][ T9084] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  401.197420][ T9084] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  401.207050][ T9084] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  401.216714][ T9084] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  401.236479][ T5852] lo speed is unknown, defaulting to 1000
[  401.569595][ T9237] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  401.852208][ T9237] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  402.179560][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  402.239131][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  402.277119][ T9237] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  402.409290][ T9237] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  402.513399][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  402.557917][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  402.748097][ T9424] kvm: requested 130742 ns i8254 timer period limited to 200000 ns
[  402.836559][ T9424] kvm: requested 136609 ns i8254 timer period limited to 200000 ns
[  402.896655][ T9424] kvm: requested 56990 ns i8254 timer period limited to 200000 ns
[  402.952833][ T9424] kvm: requested 73752 ns i8254 timer period limited to 200000 ns
[  403.614202][ T9237] 8021q: adding VLAN 0 to HW filter on device bond0
[  404.475397][ T9237] 8021q: adding VLAN 0 to HW filter on device team0
[  404.527970][ T3452] bridge0: port 1(bridge_slave_0) entered blocking state
[  404.535479][ T3452] bridge0: port 1(bridge_slave_0) entered forwarding state
[  404.584387][ T2979] bridge0: port 2(bridge_slave_1) entered blocking state
[  404.591728][ T2979] bridge0: port 2(bridge_slave_1) entered forwarding state
[  404.858371][ T9442] (null): rxe_set_mtu: Set mtu to 1024
[  404.885447][ T9442] rdma_rxe: rxe_newlink: failed to add bond0
[  404.930901][ T9442] netlink: 'syz.3.1076': attribute type 13 has an invalid length.
[  404.987540][ T9442] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  405.583616][ T9237] 8021q: adding VLAN 0 to HW filter on device batadv0
[  406.940944][ T9477] loop1: detected capacity change from 0 to 1024
[  407.029183][ T9477] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  407.156582][ T9492] loop3: detected capacity change from 0 to 1024
[  407.164046][ T9477] ==================================================================
[  407.172191][ T9477] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90
[  407.180247][ T9477] Read of size 18446744073709551588 at addr ffff88805da8f840 by task syz.1.1081/9477
[  407.190021][ T9477] 
[  407.192425][ T9477] CPU: 1 PID: 9477 Comm: syz.1.1081 Not tainted syzkaller #0
[  407.200268][ T9477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  407.210842][ T9477] Call Trace:
[  407.214164][ T9477]  <TASK>
[  407.217141][ T9477]  dump_stack_lvl+0x16c/0x230
[  407.221969][ T9477]  ? read_lock_is_recursive+0x20/0x20
[  407.227658][ T9477]  ? show_regs_print_info+0x20/0x20
[  407.233009][ T9477]  ? load_image+0x3b0/0x3b0
[  407.237569][ T9477]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[  407.243014][ T9477]  ? __virt_addr_valid+0x18c/0x540
[  407.248185][ T9477]  ? __virt_addr_valid+0x469/0x540
[  407.253361][ T9477]  print_report+0xac/0x220
[  407.257858][ T9477]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  407.263619][ T9477]  kasan_report+0x117/0x150
[  407.268283][ T9477]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  407.273806][ T9477]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  407.279330][ T9477]  kasan_check_range+0x288/0x290
[  407.284373][ T9477]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  407.289925][ T9477]  __asan_memmove+0x29/0x70
[  407.294573][ T9477]  ext4_xattr_set_entry+0x94b/0x1e90
[  407.300006][ T9477]  ext4_xattr_block_set+0xae3/0x32a0
[  407.305362][ T9477]  ? ext4_destroy_inode+0xe8/0x1b0
[  407.310562][ T9477]  ? ext4_destroy_inode+0x1b0/0x1b0
[  407.313558][ T9491] loop6: detected capacity change from 0 to 2048
[  407.315966][ T9477]  ? proc_nr_inodes+0x230/0x230
[  407.316020][ T9477]  ? do_raw_spin_unlock+0x121/0x230
[  407.332641][ T9477]  ? _raw_spin_unlock+0x28/0x40
[  407.337642][ T9477]  ? ext4_xattr_block_find+0x350/0x350
[  407.343267][ T9477]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  407.348711][ T9477]  ext4_xattr_set_handle+0x10a1/0x1290
[  407.354410][ T9477]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  407.360472][ T9477]  ? __ext4_journal_start_sb+0x259/0x570
[  407.366262][ T9477]  ext4_xattr_set+0x22d/0x320
[  407.371010][ T9477]  ? end_current_label_crit_section+0x170/0x170
[  407.377321][ T9477]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  407.382942][ T9477]  ? posix_xattr_acl+0x93/0xb0
[  407.387785][ T9477]  ? evm_protect_xattr+0x36d/0x7a0
[  407.392952][ T9477]  ? ext4_xattr_trusted_get+0x40/0x40
[  407.398406][ T9477]  __vfs_setxattr+0x431/0x470
[  407.403165][ T9477]  __vfs_setxattr_noperm+0x12d/0x5e0
[  407.408785][ T9477]  vfs_setxattr+0x16c/0x2f0
[  407.413362][ T9477]  ? xattr_permission+0x470/0x470
[  407.418499][ T9477]  ? __mnt_want_write+0x223/0x2a0
[  407.423616][ T9477]  ? path_setxattr+0x314/0x550
[  407.428448][ T9477]  path_setxattr+0x362/0x550
[  407.433125][ T9477]  ? simple_xattrs_free+0x150/0x150
[  407.438424][ T9477]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  407.444487][ T9477]  ? lock_chain_count+0x20/0x20
[  407.449417][ T9477]  __x64_sys_lsetxattr+0xb8/0xd0
[  407.454475][ T9477]  do_syscall_64+0x55/0xb0
[  407.458965][ T9477]  ? clear_bhb_loop+0x40/0x90
[  407.463716][ T9477]  ? clear_bhb_loop+0x40/0x90
[  407.468475][ T9477]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  407.474559][ T9477] RIP: 0033:0x7f2d3338eec9
[  407.479051][ T9477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  407.498708][ T9477] RSP: 002b:00007f2d3429b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  407.507166][ T9477] RAX: ffffffffffffffda RBX: 00007f2d335e5fa0 RCX: 00007f2d3338eec9
[  407.515290][ T9477] RDX: 0000200000000000 RSI: 0000200000000180 RDI: 00002000000001c0
[  407.523746][ T9477] RBP: 00007f2d33411f91 R08: 0000000000000000 R09: 0000000000000000
[  407.531859][ T9477] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  407.539975][ T9477] R13: 00007f2d335e6038 R14: 00007f2d335e5fa0 R15: 00007ffc47896cc8
[  407.548247][ T9477]  </TASK>
[  407.551291][ T9477] 
[  407.553634][ T9477] Allocated by task 9477:
[  407.558082][ T9477]  kasan_set_track+0x4e/0x70
[  407.562706][ T9477]  __kasan_kmalloc+0x8f/0xa0
[  407.567313][ T9477]  __kmalloc_node_track_caller+0xb2/0x230
[  407.573051][ T9477]  kmemdup+0x2b/0x70
[  407.576962][ T9477]  ext4_xattr_block_set+0x9e5/0x32a0
[  407.582280][ T9477]  ext4_xattr_set_handle+0x10a1/0x1290
[  407.587865][ T9477]  ext4_xattr_set+0x22d/0x320
[  407.592639][ T9477]  __vfs_setxattr+0x431/0x470
[  407.597353][ T9477]  __vfs_setxattr_noperm+0x12d/0x5e0
[  407.602679][ T9477]  vfs_setxattr+0x16c/0x2f0
[  407.607211][ T9477]  path_setxattr+0x362/0x550
[  407.611837][ T9477]  __x64_sys_lsetxattr+0xb8/0xd0
[  407.616795][ T9477]  do_syscall_64+0x55/0xb0
[  407.621340][ T9477]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  407.627447][ T9477] 
[  407.629797][ T9477] The buggy address belongs to the object at ffff88805da8f800
[  407.629797][ T9477]  which belongs to the cache kmalloc-1k of size 1024
[  407.644326][ T9477] The buggy address is located 64 bytes inside of
[  407.644326][ T9477]  1024-byte region [ffff88805da8f800, ffff88805da8fc00)
[  407.657967][ T9477] 
[  407.660409][ T9477] The buggy address belongs to the physical page:
[  407.667027][ T9477] page:ffffea000176a200 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5da88
[  407.677212][ T9477] head:ffffea000176a200 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  407.686163][ T9477] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  407.694190][ T9477] page_type: 0xffffffff()
[  407.698573][ T9477] raw: 00fff00000000840 ffff888017841dc0 dead000000000100 dead000000000122
[  407.707272][ T9477] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  407.716046][ T9477] page dumped because: kasan: bad access detected
[  407.722482][ T9477] page_owner tracks the page as allocated
[  407.728204][ T9477] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 48, tgid 48 (kworker/u4:3), ts 90921783683, free_ts 27284964363
[  407.748022][ T9477]  post_alloc_hook+0x1cd/0x210
[  407.752822][ T9477]  get_page_from_freelist+0x195c/0x19f0
[  407.758616][ T9477]  __alloc_pages+0x1e3/0x460
[  407.763234][ T9477]  alloc_slab_page+0x5d/0x170
[  407.767930][ T9477]  new_slab+0x87/0x2e0
[  407.772038][ T9477]  ___slab_alloc+0xc6d/0x1300
[  407.776740][ T9477]  __kmem_cache_alloc_node+0x1a2/0x260
[  407.782315][ T9477]  __kmalloc+0xa4/0x240
[  407.786495][ T9477]  ___neigh_create+0x6d2/0x2440
[  407.791365][ T9477]  ip6_finish_output2+0x159e/0x1650
[  407.796695][ T9477]  ndisc_send_skb+0xbed/0x14b0
[  407.801490][ T9477]  ndisc_send_ns+0xcc/0x150
[  407.806092][ T9477]  addrconf_dad_work+0xa25/0x14e0
[  407.811852][ T9477]  process_scheduled_works+0xa45/0x15b0
[  407.818602][ T9477]  worker_thread+0xa55/0xfc0
[  407.823482][ T9477]  kthread+0x2fa/0x390
[  407.827581][ T9477] page last free stack trace:
[  407.832378][ T9477]  free_unref_page_prepare+0x7ce/0x8e0
[  407.838000][ T9477]  free_unref_page+0x32/0x2e0
[  407.842804][ T9477]  free_contig_range+0xa1/0x160
[  407.847678][ T9477]  destroy_args+0x80/0x850
[  407.852426][ T9477]  debug_vm_pgtable+0x3cc/0x410
[  407.857331][ T9477]  do_one_initcall+0x1fd/0x750
[  407.862145][ T9477]  do_initcall_level+0x137/0x1f0
[  407.867123][ T9477]  do_initcalls+0x69/0xd0
[  407.871621][ T9477]  kernel_init_freeable+0x3d2/0x570
[  407.876954][ T9477]  kernel_init+0x1d/0x1c0
[  407.881391][ T9477]  ret_from_fork+0x48/0x80
[  407.885941][ T9477]  ret_from_fork_asm+0x11/0x20
[  407.890917][ T9477] 
[  407.893254][ T9477] Memory state around the buggy address:
[  407.899113][ T9477]  ffff88805da8f700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  407.907469][ T9477]  ffff88805da8f780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  407.915861][ T9477] >ffff88805da8f800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  407.924420][ T9477]                                            ^
[  407.931142][ T9477]  ffff88805da8f880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  407.939404][ T9477]  ffff88805da8f900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  407.947570][ T9477] ==================================================================
[  407.986367][ T9477] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  407.993730][ T9477] CPU: 0 PID: 9477 Comm: syz.1.1081 Not tainted syzkaller #0
[  408.001331][ T9477] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  408.011703][ T9477] Call Trace:
[  408.015026][ T9477]  <TASK>
[  408.017996][ T9477]  dump_stack_lvl+0x16c/0x230
[  408.022737][ T9477]  ? show_regs_print_info+0x20/0x20
[  408.028085][ T9477]  ? load_image+0x3b0/0x3b0
[  408.032752][ T9477]  panic+0x2c0/0x710
[  408.036717][ T9477]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  408.043038][ T9477]  ? bpf_jit_dump+0xd0/0xd0
[  408.047620][ T9477]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  408.053592][ T9477]  ? _raw_spin_unlock+0x40/0x40
[  408.058541][ T9477]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  408.064084][ T9477]  check_panic_on_warn+0x84/0xa0
[  408.069082][ T9477]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  408.074683][ T9477]  end_report+0x6f/0x140
[  408.078981][ T9477]  kasan_report+0x128/0x150
[  408.083540][ T9477]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  408.089064][ T9477]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  408.094587][ T9477]  kasan_check_range+0x288/0x290
[  408.099752][ T9477]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  408.105356][ T9477]  __asan_memmove+0x29/0x70
[  408.105653][ T9492] hfsplus: small file entry
[  408.114456][ T9477]  ext4_xattr_set_entry+0x94b/0x1e90
[  408.119811][ T9477]  ext4_xattr_block_set+0xae3/0x32a0
[  408.125142][ T9477]  ? ext4_destroy_inode+0xe8/0x1b0
[  408.130390][ T9477]  ? ext4_destroy_inode+0x1b0/0x1b0
[  408.135641][ T9477]  ? proc_nr_inodes+0x230/0x230
[  408.140561][ T9477]  ? do_raw_spin_unlock+0x121/0x230
[  408.145823][ T9477]  ? _raw_spin_unlock+0x28/0x40
[  408.150732][ T9477]  ? ext4_xattr_block_find+0x350/0x350
[  408.156271][ T9477]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  408.161815][ T9477]  ext4_xattr_set_handle+0x10a1/0x1290
[  408.167354][ T9477]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  408.173432][ T9477]  ? __ext4_journal_start_sb+0x259/0x570
[  408.179126][ T9477]  ext4_xattr_set+0x22d/0x320
[  408.183865][ T9477]  ? end_current_label_crit_section+0x170/0x170
[  408.190178][ T9477]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  408.195793][ T9477]  ? posix_xattr_acl+0x93/0xb0
[  408.200632][ T9477]  ? evm_protect_xattr+0x36d/0x7a0
[  408.205893][ T9477]  ? ext4_xattr_trusted_get+0x40/0x40
[  408.211428][ T9477]  __vfs_setxattr+0x431/0x470
[  408.216173][ T9477]  __vfs_setxattr_noperm+0x12d/0x5e0
[  408.221575][ T9477]  vfs_setxattr+0x16c/0x2f0
[  408.226170][ T9477]  ? xattr_permission+0x470/0x470
[  408.231257][ T9477]  ? __mnt_want_write+0x223/0x2a0
[  408.236379][ T9477]  ? path_setxattr+0x314/0x550
[  408.241294][ T9477]  path_setxattr+0x362/0x550
[  408.245961][ T9477]  ? simple_xattrs_free+0x150/0x150
[  408.251256][ T9477]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  408.257301][ T9477]  ? lock_chain_count+0x20/0x20
[  408.262216][ T9477]  __x64_sys_lsetxattr+0xb8/0xd0
[  408.267257][ T9477]  do_syscall_64+0x55/0xb0
[  408.271833][ T9477]  ? clear_bhb_loop+0x40/0x90
[  408.276576][ T9477]  ? clear_bhb_loop+0x40/0x90
[  408.281320][ T9477]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  408.287452][ T9477] RIP: 0033:0x7f2d3338eec9
[  408.292090][ T9477] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  408.311920][ T9477] RSP: 002b:00007f2d3429b038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  408.320393][ T9477] RAX: ffffffffffffffda RBX: 00007f2d335e5fa0 RCX: 00007f2d3338eec9
[  408.328514][ T9477] RDX: 0000200000000000 RSI: 0000200000000180 RDI: 00002000000001c0
[  408.336629][ T9477] RBP: 00007f2d33411f91 R08: 0000000000000000 R09: 0000000000000000
[  408.344648][ T9477] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  408.352761][ T9477] R13: 00007f2d335e6038 R14: 00007f2d335e5fa0 R15: 00007ffc47896cc8
[  408.361136][ T9477]  </TASK>
[  408.364592][ T9477] Kernel Offset: disabled
[  408.368968][ T9477] Rebooting in 86400 seconds..